SWISSNEUROREHAB is one of the fifteen projects selected  for this first edition of the Flagship initiative, started in 2021 by Innosuisse, the Swiss Agency for the Encouragement of Innovation, and intended to support interdisciplinary projects with high socio-economic value.

Through its vision, it aims at setting up an innovative model of neurological rehabilitation

The project is developed and coordinated by the CHUV, aiming at implementing an innovative model of neurological rehabilitation. The project’s budget of 11.2M CHF Is provided by Innosuisse and by industrial partners.

SwissNeuroRehab will develop and validate an effective model of neurorehabilitation along the continuum of care in Switzerland. This patient-centered model will specify the clinical, operational and economic processes required to offer the most efficient treatment of sensorimotor and cognitive deficits after stroke, traumatic brain injury and spinal cord injury. State-of-the-art, evidence-based therapeutic programs, leveraged by Digital Therapies, will be validated and implemented into the clinical routines by Swiss centers of excellence. An inter-cantonal economic model will validate the reimbursement of this new model within the healthcare system and estimate the return of investment for healthcare providers and MedTech companies. Novel education curricula and science dissemination programs will be built for healthcare professionals, decision makers, patients and caregivers. The model will offer a long-term solution to address the challenges due to the increasing prevalence of neurological disorders in our ageing society.

Every year, in Switzerland, 15,000 people suffer from a stroke, 5,000 people suffer severe or moderate cerebral trauma (CCT) and 150 find themselves paraplegic. Neurorehabilitation takes care of these patients with interdisciplinary teams of physiotherapists, occupational therapists, speech therapists, neuropsychologists, nurses and doctors, who work together to promote the recovery of walking, manual dexterity, speech, memory or concentration. Often, following a stroke or CBT, patients remain hospitalized in neurorehabilitation for months, with several therapeutic sessions a day. Hospital neurorehabilitation in Switzerland is among the most specialized and efficient in the world. However, after the patient returns home, ambulatory neurorehabilitation often remains insufficient and disconnected from hospital care. For practical reasons, such as being domiciled far from a neurorehabilitation center, but also for reasons related to insurance coverage, the follow-up of most patients is limited to a few therapeutic sessions per week instead of multi-daily sessions offered in hospitals. However, the frequency and intensity of the sessions are the main factors determining the success of neurorehabilitation and the degree of recovery. To overcome this problem, the consortium plans to develop and implement a new model of personalized neurorehabilitation. This model will include the best existing therapeutic options combined with innovative neurotechnological solutions such as neurostimulation, robotics, exoskeletons, sensors, video games and virtual reality. These new therapies will be available in the clinic, in the office, but also at home.

The development of a common and inter-cantonal data platform will make it possible to monitor and optimize neurorehabilitation processes throughout the patient’s journey from acute care to home. Experts in socio-economics are involved in the project with the aim of proposing a new repayment system defined in collaboration with insurers, including technological tools and tele-rehabilitation.

The SWISSNEUROREHAB project brings together the main academic, clinical and industrial actors in Switzerland who has started collaboration to combine conventional neurorehabilitation approaches with new digital technologies, to offer personalized care to patients with sequelae of strokes, head injuries ands paraplegia.

The academic part includes, among others, the university hospitals in Lausanne, Bern, Geneva and Zurich, EPFL, ETH in Zurich, and SUVA clinics. Among the industrial partners are Hocoma, the world leader in the movement’s rehabilitation technologies, the Cara and Pryv companies working on the patient’s electronic file, the Lausanne unicorn start-up MindMaze and other neurotechnological start-ups.

In this project, coordinated by Professor Andrea Serino, the CHUV works closely with the Institution of Lavigny, as it already does as part of the new University Service of Neurorehabilitation (SUN). The outpatient part of the SUN was designed in the spirit of the Flagship project, by putting neurotechnologies for the benefit of Vaud patients requiring neurorehabilitation. The project will be a pillar of the new Interdisciplinary Research Center in Neuroplasticity and Neurorehabilitation (CRINN) implemented jointly by the CHUV, the University of Lausanne and the Institution of Lavigny as part of the SUN.

Sources :

https://www.swissneurorehab.ch/press-dissemination/

https://www.chuv.ch/fr/chuv-home/espace-pro/journalistes/communiques-de-presse/detail/swissneurorehab-projet-integrant-les-neurotechnologies-et-la-neurorehabilitation-decroche-un-financement-innosuisse-flagship

The post Pryv.io consent and data management software is used in the SWISSNEUROREHAB, a project integrating neurotechnologies and neurorehabilitation to allow comprehensive, effective and efficient care all along the continuum of care appeared first on Pryv.

Evelina Georgieva, Pryv: “investing in data privacy is not only about fulfilling a requirement to achieve compliance”

Today, everyone leaves a digital footprint on the Internet. Whether it’s when you visit a daily newspaper website or when you make online banking transactions. Unfortunately, not all companies put their primary focus on data privacy and that leaves enormous amounts of sensitive information at risk.

It’s essential that businesses would start seeing data privacy as an essential part of building trust and brand reputation rather than a tick-box to achieve compliance. 

So Cybernews invited Evelina Georgieva, the Co-Founder and Business Development Officer at Pryv, to discuss about modern personal data management solutions and how they can empower forward-looking companies.

How did the idea of Pryv originate? What has your journey been like?

Pryv is a blend of ideas initiated more than 10 years ago. While overcoming leukemia, Pierre-Mikael got inspired to develop a solution that will empower patients to stay away from the hospital but still receive crucial monitoring and care remotely. At the same time, Frederic was eager to create a B2C digital place, Facebook-like but with privacy at focus to empower users to master their data sharing and protect their data ownership rights. Simon brought his digital ethics and privacy vision. I (Evelina) joined them when we pivoted from the B2C concept to create Pryv B2B as you know it today: a trusted software vendor of privacy and personal data management solutions. 

Can you introduce us to your personal data management software? What are its key features?

We help organizations manage personal data from creation to use, sharing and disposal. Following the privacy engineering approach, we support our client’s IT teams to ensure that their data privacy compliance is done right: from the very early architecture design to the introduction of data-driven business models. We help them not only accelerate time to market but also cut IT development costs and speed up data utility and scalability across legal jurisdictions, such as the GDPR and industry-specific regulations.

Since 2015, we license our Pryv.io software which is used as a solid foundation to boost the development efforts of “integrated teams” of IT engineers, legal and business experts. The Pryv.io middleware acts as a “plumbing system” which ensures their digital platform has its best chances to engage customers and drive business values – covering the entire data lifecycle and the data privacy aspects.

Among the bestseller features are the dynamic consent, extensible data model, decentralized storage for scalability, and data mapping for automatic integration with existing warehouses.

In your opinion, what data privacy issues should more people be concerned about?

It is yet not clear enough that privacy and security are different. Unlike security, which nowadays is well understood by almost anyone, data privacy is still unclear. Privacy can be translated in different ways and have different meanings. While some will correlate it with limiting access to data, others, like us at Pryv, will look at data privacy as a tool to unlock data values. For us, privacy is not secrecy, but the ability of individuals to use their data, act on their rights and give informed consent for the rightful processing of this data. Thus, each stakeholder can win more from the unlimited power that personal and contextualized data can bring.

My message to the users will be first to decide what privacy means to them and then take decisions and measure risks versus opportunities.

How do you think the recent global events affected your field of work?

The effect of the Covid pandemic, the growing power of information war, the upscaling Digital Democracy, and the rapidly changing Data Protection Regulations on a global scale, just to name a few, have been undoubtedly an eye-opening momentum for any forward-looking business. It became apparent that investing in data privacy is not only about fulfilling a requirement to achieve compliance but an imperative to build trust, protect brand reputation, and develop new revenue streams. 

Some experts believe that keeping up to date with data privacy trends and requirements could even be the selling point for customers. Can you share some tips for businesses looking to update their privacy policy? 

We believe that personal data aggregation, sharing, and processing should be as effective, secure, and trustworthy as online banking. This is a must-have to empower the user to understand the value of the data, how to manage and control it, and promote trust and engagement. 

In this new paradigm, privacy is not a compliance tick-box but an opportunity to break data silos, differentiate products, and services and attract end-users with trust, transparency, and empowerment. 

We advise our customers to embed privacy-DNA in any process of their organizations, early in the development phase, ensure cross-functional team and privacy-engineering capabilities and thus guarantee they can deliver competitive user-attracting services and open up new horizons for achieving high ROI in a short period and overtime.

What dangers can customers be exposed to if a company they trust struggles to ensure compliance? 

Besides the obvious non-compliance and loss of brand reputation and trust, for many businesses, a data protection breach will mean a loss of business that could be as strong as pushing the business to bankruptcy.

For users, understanding the trusted brand lacks privacy compliance might result in disappointment and disengagement, as well as pushing the individuals to act on their data rights (where is my data stored, prove me you have my consent and what so for, provide an audit on the data interactions, etc.) Incapacity to deliver will again result in impressively huge fines and serious business consequences.  

What are some of the worst mistakes companies tend to make when it comes to handling large amounts of customer data?

The biggest mistakes in my opinion are the following:

• Undervaluing the importance and impact data privacy has on their business
• Misunderstanding the data privacy principles
• Non-differentiating data privacy and security
• Not being able to identify data categories correctly
• Lacking efficient data governance strategy
• Implementing “bolt-on” patching solutions
• Missing the right team expertise

Talking about individuals, what actions should average Internet users take to protect their personal data online? 

Before taking action, we advise users to be informed about the data privacy rights they have and then to act on them. 

Share with us, what’s next for Pryv?  

We have recently introduced a powerful extension of our services by teaming up with OpenWT. As part of Pryv corporate development and pivotal time of growth, Pryv continues its full operations, focused on delivering licenses of its proprietary Pryv.io software, while data privacy consultancy services will be carried out by the OpenWT Data Privacy Excellence Practice.

About Cybernews.com is a research-based online publication that helps people navigate a safe path through their increasingly complex digital lives. The CyberNews Investigation team uses white-hat hacking techniques to find and safely disclose cybersecurity threats and vulnerabilities across the online world. Leaks of users’ personal information? Security flaws in enterprises? Exchanges of sensitive data on the dark web? They’re on it. The CyberNews Editorial team provides cybersecurity-related news, analysis, and opinions by industry insiders. They are working independently and transparently following our Editorial guidelines.

The post Evelina Georgieva, Pryv: “investing in data privacy is not only about fulfilling a requirement to achieve compliance” appeared first on Pryv.

Privacy compliance is an imperative for a successful digital transformation and investments in data privacy are reaching new records. The appetite for the development of data-driven products and services made privacy a first priority for any forward looking business dealing with personal data assets. All market segments offering digital services to consumers are impacted. From Digital Health, to Financial Services, Insurances, Retail, Telecommunications, Manufacturing, Real Estate, eCommerce or Public Services, data privacy should be integrated at the early stage of the design of the digital solutions, to ensure a stronger and more cost-effective protection for personal data privacy.

The OpenWT Data Privacy Excellence Practice comes at a time of a global shortage of data privacy expertise. The OpenWT team brings a strong value proposition to fill the gap and beat the circle of distrust, ensuring not only the regulatory compliance to Swiss data protection laws and GDPR, but upscaling for its clients business opportunities based on modern data-driven product and service offerings.

Bringing distinguished expertise and broad domain experience in data privacy and governance, the co-founders of Pryv SA, Pierre-Mikael Legris & Evelina Georgieva will lead the development of OpenWT Data Privacy Excellence Practice. As part of its corporate development and pivotal time of growth, Pryv SA will continue its full operations, focused on delivering licenses of its proprietary Pryv.io software, while Data Privacy consultancy services will be carried out by the OpenWT Data Privacy Excellence Practice.

The co-founders of Pryv SA, Pierre-Mikael Legris & Evelina Georgieva, are joining OpenWT on April 1st as Associate Partners.  They bring a distinguished expertise and broad domain experience in data privacy & governance and will lead the development of OpenWT’s Data Privacy Excellence practice. All Data Privacy consultancy services will be carried out by the practice, while Pryv SA will continue its operations, focusing on delivering licenses of its proprietary Pryv.io software.

About Open WT

Open Web Technology is a technology and strategy consulting firm. We help our clients leverage new technologies to reshape their business, invent new products or transform their organization. With a large growth every year and now 200 employees, Open Web Technology is a fast growing and highly connected team. Since January 2016, we are a brand of Swisscom Digital Technology SA, a joint venture established with Swisscom, whose goal is to become a leading provider of digital transformation consulting services for large companies in Switzerland in the Telecommunications, Banks, Insurances, Media, Manufacturing, Healthcare and Consumer Goods industries.

More about Open Web Technology: https://openwt.com/en

About Pryv

Pryv SA is a Swiss-based company, operational since 2012, which has developed and commercialized a privacy & consent management solution: middleware software for compliant collection, structure, storage, usage and sharing of sensitive personal and health data throughout the entire data lifecycle, including dynamic consent management and auditing tools.The Pryv.io tool ensures legal interoperability compliance with GDPR, Swiss DPA, existing and forthcoming global data protection and industry-specific standards and regulations. 

More about Pryvi.io privacy software:https://pryv.github.io/www/tag/features/

The post In cooperation with Pryv management team, Open Web Technology strengthens its Data Privacy Excellence Practice to design digital solutions ensuring personal data management in compliance with the Swiss data protection laws and GDPR appeared first on Pryv.

Pryv.io Personal Data Mapping to enable automatic integration with existing warehouses.

Integrate existing data warehouses with Pryv.io privacy back-end:

• Make legacy systems (warehouses) easy to integrate with new external systems within a privacy-compliant environment. 
• Significantly reduce time and errors managing data-subject requests.

Pryv developed and commercialized a privacy-by-design middleware system that provides full, innovative personal data life cycle management. This technology allows for privacy compliance, interoperability and data sharing to a granular-level, using transparent, unambiguous enforcement of consent applied on a data set.

Pryv.io Data Mapping provides companies with existing data warehouses the means to adopt faster innovation, integrate real-world personal data and build better personalised services, all within a transparent and privacy-compliant environment. 

Existing systems usually face major hurdles integrating with external solutions with the synchronisation of very big datasets and the transfer and storage of multiple copies of sensitive data. Pryv.io Data Mapping allows:

• to benefit from the capacity of privacy-by-design models;
• map dynamically existing datasets in a transparent and unambiguous form, presented to an individual for his enlightened consent;
• unlock the capacity to offer privacy on legacy datasets.  

Request A Presentation

Current status for managing data-subject requests on personal data access and processing by systems without privacy-by-design architecture:

Today, initiating a NEW data processing in organizations with legacy systems involves time consuming processing for the Data Protection Officer (DPO) to scope the necessary datasets, collect consents and verify compliance with applicable regulations. Furthermore, it requires manual intervention of technicians to extract datasets. Multi-employees interaction and manual processes are prolonged, lack efficiency and generate errors. Such processes would not be acceptable in the short-mid term. Investments in innovation and automation must be considered. (Pic. 1)

Managing data-subject requests on personal data access and processing by implementing Privacy-by-design solutions 

Privacy-by-design solutions digitalize consent collection and offer effective control over the personal data life cycle. Pryv.io provides a privacy-by-design framework to interact with personal data. This framework only operates on data it controls. (Pic.2) Still, this solution requires the data to be fully copied and synchronized from/with the legacy system. This process is not optimal for large data warehouses, data lakes and highly dynamic data sets.

Pic.2 Managing data-subject requests on personal data access and processing by implementing Privacy-by-design solutions

Solution: Personal Data Mapping to enable automatic integration with existing warehouse for managing data-subject requests on personal data access and processing

To meet the needs of mapping large data warehouses, data lakes and highly dynamic data sets, Pryv has developed a new technology that maps dynamically existing datasets in a transparent and unambiguous form to be presented to an individual for his enlightened consent.  

“Unlocking the capacity to offer privacy on legacy datasets allows us to provide our services to a much broader set of companies handling personal data, which is important since the older ones are more in need of an up-to-date system regarding privacy regulations.” says Pierre-Mikael Legris, CEO and co-founder of Pryv SA.

Privacy-by-design solutions digitalize consent collection and offer effective control over personal data life cycle. Pryv.io provides a privacy-by-design framework to interact with personal data. To operate, this framework must stand as a “gateway” to interact with personal data. Including Dynamic Mapping. On Existing Datasets allows to benefit from privacy by design for new over existing data sets. (Pic.3)

Pic.3 Personal Data Mapping to enable automatic integration with existing warehouse for managing data-subject requests on personal data access and processing

To learn more about how Pryv.io Dynamic Data Mapping will resolve your personal data management needs and facilitate automatic integration of personal data mapping with your existing warehouses contact us at: business@pryv.com

For more features by Pryv.io, visit: https://pryv.github.io/www/tag/features/

Developer resources: https://pryv.github.io/

Commercial applications: https://pryv.github.io/www/news-list/

The post Pryv.io Personal Data Mapping to enable automatic integration with existing warehouses appeared first on Pryv.

Once lost, trust cannot be easily found, or not at all.

Data tampering attacks are a serious threat. And as recent news indicates an upsurge of cyber-attacks against personal data-fueled businesses worldwide, one that should be taken seriously. Imagine the repercussions of a clinical trial results based on data altered by an attacker.

Data can be tampered with in many ways.

 In the worst cases, these alterations may even remain undetected. So how can you ensure that data has not been subject to unauthorized changes along the way?

Data Integrity

Data integrity refers to the accuracy and consistency (validity) of data over the data lifecycle. It means that the data, from the time it was collected to the time it was stored, used, shared, archived and deleted, can be trusted to be accurate and free from tampering.

Regulations such as the GDPR or Swiss DPA in particular provide for such a requirement as a key principle to ensure that data is adequately protected, which is of utmost importance when it comes to the collection and usage of personal data assets.

By ensuring data integrity, companies ensure that data is exactly as it should be at any given time, which is key for health data, medical information, or contractual documents.

 (eg.: with a digital signature (eConsent) for Clinical Trials DCT), etc)

How is Data Integrity achieved by Pryv.io? – Generating a checksum for all data uploaded

When a document or information is created or modified on Pryv.io, a receipt is issued with a “checksum”, which can then be used to detect unexpected  modification.

The receipt does not expose any personal data, but simply serves as proof of integrity. You can think of this receipt (checksum) as your data’s fingerprint.

This ability to check for data accuracy and consistency can be very valuable in the context of Remote Clinical Trials. For example: Tom, a participant of the trial, uploads a document on a dedicated online platform to be shared with Dr.Jones, his investigator:

• After the upload is completed, a receipt is issued to Tom with the following checksum: “1582054665”.
• Tom can share the receipt (checksum) with Bob separately. And tell Bob that the document he will get must have the same checksum (“1582054665”). 
• Or, Bob could compute the checksum when he receives the document and send it to Dr.Jones, who can then confirm that the “fingerprints” match. 
• If a single bit of the document is changed, the checksum will be fully different. 

What added value does it bring?

Whether on purpose or by accident, compromising data integrity can not only result in serious risks for the data subjects, but also put the entire company’s reputation and operations at risk. At any given time, individuals using a platform, or an app built on Pryv.io can verify that the data has not been subject to any unauthorized change.

Data Audit & Integrity?

Audit logs maintain a full and complete history of every change that has been made on a piece of data, by whom and when. An audit log is the simplest, yet also one of the most effective forms of tracking temporal information. Any time something significant happens, a record indicating what happened and when it happened, is generated.

Coupled with this audit feature and versioning of Pryv.io, companies can rebuild the data lifecycle to prove the genuinity of the data.

Blockchain – Full data integrity support for Pryv.io enables a new level of trust and confidence between our customers and their partners

The Pryv.io data integrity mechanism is designed to be coupled with a timestamping solution or a blockchain. In that case, the blockchain would keep all the receipts for public (or private) consultation. 

Data worths nothing if not trustworthy

At Pryv we continuously work on advancing Pryv.io functionalities to ensure we deliver an outstanding technology not only to meet technical and legal requirements, to ensure confidentiality and trustworthiness of data, but embed trust in any aspect of building a strong relationship with your customers. 

Stephanie & Evelina

Online sources:

• https://gdpr-info.eu/art-5-gdpr/
• https://gdpr-info.eu/art-32-gdpr/
• https://www.fedlex.admin.ch/eli/cc/1993/1945_1945_1945/en
• https://www.fedlex.admin.ch/eli/cc/1993/1962_1962_1962/en
• https://www.fortinet.com/resources/cyberglossary/cia-triad
• https://en.wikipedia.org/wiki/Checksum

The post “Data Integrity” is key to safeguard data, trust and business reputation appeared first on Pryv.

Lausanne / Zurich 7th October 2021 The Swiss-based pioneers in healthcare innovation, Sleepiz which provides a Medical Grade Respiration Monitor and Pryv, the health data, privacy and consent management solution provider announced today a strategic collaboration to foster hospital remote monitoring adoption at ease.

Covid-19 crisis put the spotlight on the digital roadmap of any hospital institution. The use of digital tools for improving outpatient care is growing faster than ever. At the rise of the expected 4th Covid-19 wave the healthcare systems are exponentially investing in adopting telehealth solutions and providing remote care as a secure and trusted alternative of traditional care. Reasons for telehealth investments by hospitals are multiple. Telehealth solutions allow hospitals to ease the burden on nurses and doctors while being able to cater to more patients and even focusing on the patients most in need through better triage. Although there are already a number of remote care technologies, adoption for hospitals remains challenging as most of them are not approved medical devices, lack privacy compliance and thus cannot be integrated in the heavily regulated processes the healthcare system has put in place.

To address this challenge and ensure a smooth workflow for physicians, caregivers and patients Sleepiz, the only medical grade (CE approved) contactless monitor and Pryv, a Swiss leader in privacy and patient data management solution provider, join efforts to bring a solution which not only meet the requirements of interoperability, easy and timely integration with the existing EHR, but delivers a ready-to-be-used platform for establishing trustful online communication with the patient. Sleepiz is the first healthcare company in Switzerland with ISO 277701 and ISO 27001 with certification of their system for data privacy and information security.

Pryv.io is a privacy-centric middleware, used as a robust data management foundation to develop risk-controlled mHealth, eHealth, and InsurTech applications with confidence and in respect to IT and regulatory requirements. The solution is used to manage large and diverse streams of data coming from external platforms, wearable devices, EHR/EMR and health record systems.

This partnership will help hospitals move towards digitizing their infrastructure and integrating homecare monitoring seamlessly into their ecosystem.

About Sleepiz:

Sleepiz AG (Ltd.) is a Zürich based startup with a mission to provide patient-centric disease management through seamless integration of contactless monitoring into people’s homes. Sleepiz leverages the power of sleep insights with a device that is simply placed next to the bed. The device operates in a non-contact fashion and measures movements originating from heart contractions and breathing patterns, as well as body motions with medical grade accuracy.

While currently focusing on respiratory illnesses, Sleepiz aims to improve people’s lives by creating the future of healthcare. By making use of wireless millimeter wave technology, sensor fusion and artificial intelligence, in the future Sleepiz will not only be able to diagnose sleep disorders but also perform long-term monitoring. Thereby, the progression of chronic diseases will be monitored to allow faster intervention and better treatment.

Sleepiz is touching lives without touching.

www.sleepiz.com

About Pryv

Pryv provides privacy software for data-driven healthcare innovation and patient’s data governance. Our purpose-built backend helps organizations manage personal and health data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. The solution is available in open-source and under licensing agreement. For more information, please visit

pryv.gihub.io/www

http://ceur-ws.org/Vol-2451/paper-08.pdf

The post Sleepiz partners with Pryv to integrate respiratory and health data in hospitals’ EMR enabling remote Covid-19 patients monitoring at home. appeared first on Pryv.

Unify Health aims to be an app that is always accessible, no matter whether it is night or day that provides cancer patients a toolkit of tailored advice and information with the ability to locate community pharmacists with training on the management of cancer symptoms. Confidentiality is central to development of trust between patient and healthcare professionals. Ensuring privacy can help promote more effective communication and promote public confidence in the platform.

“The Pryv solution allowed us to underpin our application with a secure and compliant platform for data storage bringing the application to market more rapidly than had that element been developed bespoke. Regulatory compliance in terms of personal data was at the heart of what we were trying to achieve here. All personal data collected within the app is managed via the Pryv.io patient data governance software and no patient data leaves the relevant territories (i.e. UK patient data stays in the UK, EU patient data stays in the EU). Pryv comes with must-have consent and auditing tools to keep the platform compliant with existing and forthcoming regulations.Their team were always on hand to support us through the onboarding and implementation stages of the project.” said Alex Williams, Head of Digital at Swordfish Advertising.

About Unify Health: Unify Health has been devised by experts from the healthcare industry working with hospitals,
community pharmacists, clinicians, nurses, patient groups and charities to make support and advice more readily available to cancer patients. It provides a toolkit of tailored advice and information, plus a map to connect them with nearby local community pharmacists. Unify Health is available on both the Android and Apple app stores.

Pryv SA (Switzerland): Pryv makes essential software for personal and health data-driven innovation. Our purpose-built middleware helps organizations manage personal data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. For more information, please visit pryv.gihub.io/www

Swordfish Advertising: Swordfish Advertising is a fully integrated pharmaceutical and veterinary healthcare marketing and communications agency. Swordfish has undertaken all the development work of the Unify Health app.

The post More pertinent than ever during and post- COVID-19 pandemic: Accord HealthCare launches Unify Health: privacy-by-design, seamless to use cancer patient’s app. appeared first on Pryv.

The strong need for digital solutions to collect real-world data from patients motivated Magnes’ team to deliver on a novel solution for monitoring patients. Magnes’ solution will allow personalized medication and treatments based on real-world data in addition to enabling healthcare professionals to monitor patients remotely at ease. Embedding the privacy-by-design Pryv.io solution, Magnes combines user-friendly operation -literally, patients just wear the shoes- and accurate gait data collection anywhere with confidence.

Neuro-degenerative diseases are becoming a burden for the healthcare systems with the aging population worldwide. Today most available medications and treatments have limited success in stopping disease progression and enabling full recovery for neuro-degenerative diseases. Personalization of medication and its dosage is extremely important for therapies to work effectively.  Reliable, unbiased data collection from patients in their day-to-day environment is crucial in disease management.

Today clinicians rely on self-reports to gain insight into what a person is doing in daily life. The assumption that patients’ activity at the clinic is comparable to the at-home activity may not be realistic. The current high-end solutions in the market for analyzing gait are complex systems installed in clinics (camera-based systems, pressure sensitive walkways) that take a long time for patient preparation and for analyzing data. Even if they offer a good assessment of the patient, they are not practical for continuous monitoring of patients. Furthermore, being in a laboratory setting and under the observation of clinicians biases patients and the gait parameters can diverge from the typical ones. So far, no commercial system has been designed for monitoring the progress of patients, especially at home.

“The well-known “White Coat Syndrome” that makes your blood pressure higher in front of a doctor applies to a wide range of measurements. With Magnes’ solution, patients can not only enjoy the comfort of their home, but also provide accurate and genuine health data.” says Pierre-Mikael Legris, CEO at Pryv SA

Most of the existing wearable devices collecting activity data or gait data from individuals work well on healthy individuals but they fail to detect clinically relevant gait parameters from patients of neurological disorders such as Parkinson’s patients, who have atypical gait.

“Pryv allowed us to build a platform within days, which is transparent and compatible with all data privacy regulations. Our platform gives patients full control over their data while complying with GDPR and medical data management regulations. It gives both our clinical partners and patients confidence to use our solution without any hesitation. With its various data integration possibilities, Pryv software will allow us to easily scale up our business in different fields and geographies.” Magnes CEO Dr. Olgac Ergeneman says.

Using sensors embedded in sneaker-like shoes and proprietary AI empowered algorithms allow Magnes to collect objective clinical-grade data during daily activities. Magnes has validated their solution with gold standard measurement systems and demonstrated the clinical usage at leading neurological clinics. Some of the algorithms run on the shoes to enable real-time processing for personalized therapy and can provide immediate haptic stimulation to the patient to improve patients’ mobility and quality of life. Magnes’ solution is first targeted at patients of neurological and movement disorders such as Parkinson’s disease, Alzheimer’s disease, multiple sclerosis, dementia, and incomplete spinal cord injury.

Unique in its offering, Magnes offers a continuous monitoring solution for patients to collect data during their daily life activities without requiring patient preparation and doctor’s visit. It has the potential to change patients’ life quality by improving their mobility with the AI-powered haptic feedback technology.

About Magnes:  Magnes AG is a technology spinoff from the Multi-Scale Robotics Lab of ETH Zurich. Magnes developed a continuous monitoring solution for patients of neurological disorders. Magnes solution enables collection of real-world data from patients. Magnes developed AI-powered algorithms to provide personalized gait analysis and it can provide immediate haptic feedback to patients for improving their mobility. For more information, please visit www.magnes.ch

About Pryv: Pryv provides privacy software for data-driven healthcare innovation and patient’s data governance. Our purpose-built backend helps organizations manage personal data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. The solution is available in open-source and under licensing agreement. For more information, please visit pryv.gihub.io/www

The post Magnes selects Pryv to ensure patients’ privacy in its breakthrough real-life-monitoring solution for patients with neurological disorders. appeared first on Pryv.

This content is password protected. To view it please enter your password below:

Password:

The post Protected: More pertinent than ever during and post- COVID-19 pandemic: Accord Health Care launches Unify Health: privacy-by-design, seamless to use cancer patients’ app appeared first on Pryv.

From reactive to proactive heart health: Inspired by consumer wearable devices, RealWorld4Clinic, set about creating a wearable that could collect data suitable for drug approval trials and guide interventions in heart failure management.

Heart failure is responsible for five per cent of emergency hospital stays and two per cent of national health expenditure within Europe. Furthermore, COVID-19 pandemic has represented a clinical challenge in patients with heart failure. It’s widely accepted that real-world data is vital for diagnosing heart failure early. Yet, clinical research and heart failure management still buy in data, limiting the predictive power of clinical trials.

By diagnosing heart failure aggravation from 30 days before an emergency event occurs, RealWorld4Clinic will halve the number of days patients spend in a hospital, while reducing hospital costs.

RealWorld4Clinic will achieve its ambitions through the market launch of SentinHealth‘s MyHeartSentinel – a coin-sized medical device anchored to the fundus of the stomach in immediate proximity to the heart and the lungs or, optionally, implanted subcutaneously in the chest area.  Equipped with multiple sensors MyHeartSentinel shall acquire a wide array of real-world cardio-respiratory health data. Via SentinHealth’s gateway and regulated through Pryv eHealth data privacy-preserving patient’s data management backend will be deployed on a cloud infrastructure. 

In addition to co-creating the wearable MyHeartSentinel product, EIT Health will help resolve the ethical, legal and social issues involved with buying and using AI to maximise heart health data. 

In clinical research, AI-powered analytics shall reveal information on the real-world safety and tolerability of an investigational medicinal product or device. This is forecasted to add value to the decision making of pharma on the continuation of its clinical development. In outpatient cardiology, AI-powered analytics shall reveal real-world information on the pre-symptomatic progression of heart failure. This is forecasted to prevent heart failure decompensation while reducing the number of outpatient visits and days spent in the hospital.

About RealWorld4Clinic: RealWorld4Clinic is a new pan-European project aiming at bringing real-world data to pivotal clinical research and outpatient cardiology care. The EU-funded project is part of the innovation portfolio curated by the EIT Health knowledge and innovation community. 

MyHeartSentinel is just the beginning. Supported by EIT Health, the RealWorld4Clinic consortium is committed to transforming the standard of care from reactive to proactive heart health management. By diagnosing heart failure aggravation from 30 days before an emergency event occurs, RealWorld4Clinic will halve the number of days patients spend in a hospital, while reducing hospital costs.

RealWorld4Clinic is part of the innovation project portfolio curated by EIT Health. EIT Health is funded by the European Institute of Innovation and Technology (EIT), a body of the European Union

https://eithealth.eu/project/realworld4clinic/

About Pryv: Pryv developed personal and health data lifecycle middleware (e-Health backend) for empowering developers create compliant and scalable health data-driven products. Our purpose-built middleware helps organizations manage personal and patients data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. For more information, please visit pryv.gihub.io/www

The post RealWorld4Clinic uses Pryv eHealth backend to deliver a privacy-preserving coin-sized connected device to prevent heart failure appeared first on Pryv.

EREBOTS enable the configuration and deployment of personalized chatbots to support users in multi-topic and multi-campaign behavioral change programs with full respect to data privacy. Conversational agents coaching people fighting chronic diseases, addictions, and other health issues, leading to decreased life quality are among EREBOTS applications. 

Healthcare and eHealth systems are facing the strain of a significant demand for user (patient) empowerment—implying the need for new logics, architectures, dynamics, and interfaces 

Siri, Alexa and Cortana are among the best known intelligent systems that  have the ability to assist humans through multimodal interactions, including text, buttons, vocal, video, and gesture-based communication. Although such virtual assistants heavily rely on vocal interactions, sometimes more discrete and asynchronous chat-like communications are still preferred. Chatbots are an example of intelligent systems relying on interactions mostly menu/text-based. Anywhere/anytime availability, immediate response, confidentiality, social acceptance, and massive scalability are among the factors contributing to the increasing and an effective adoption of chatbots in a wide range of domains, particularly for motivational such as for social network campaigns and support, customer management, eHealth and assisted-living scenarios. In the healthcare domain, chatbots leveraging on tailored support and social aspects can be of great support to foster behavioural change, monitoring of chronic health conditions and primary care to name a few. 

However, most of the modern chatbots rely on state machines (implementing conversational rules) and one-fits-all approaches, neglecting personalization, data-stream privacy management, multi-topic management/interconnection, and multimodal interactions. This leads to significant limitations in inadequate personalization, lack of real-time monitoring, reporting and customization for medical personnel, lack of mechanisms to integrate communities of chatbots, limited knowledge sharing capabilities, and the impossibility of seamlessly deploying multi-domain campaigns within the same framework.  These limitations are linked to the predominantly rigid architectures proposed in most existing approaches. Most chatbot solutions rely on monolithic and centralized data management strategies, making it hard to comply with privacy regulations such as GDPR, Swiss DPA. The sensitive nature of data collected through chatbot interactions makes it necessary to shift the control of personal data towards the users themselves, empowering them in the process.  EREBOTS uses an instance of Pryv to persist the user’s chat history and all personal data. Employing Pryv, users gain exclusive control of their data, thus being able to revoke the consent at any point, disabling EREBOT access to it, and, if necessary, fully removing any stored piece of information.

Meet EREBOTS:

• Multi-scenario agent-based chatbot framework: In EREBOTS, it is possible to combine several context-dependent behaviors that can be encapsulated in dedicated story lines, which can be modeled as isolated or interconnected scenarios. These behaviors are enacted by a network of user agents, doctor agents, and orchestrated through gateway agents.
• User personalization: User agents build a model of the user profile, his/her preferences, history, goals, and aggregated information. With this model, the user agents are able to tailor behaviors and provide a personalized experience.
• Healthcare personnel control and monitoring: Medical doctors and healthcare providers have the possibility of defining possible goals, configure self-assessment interactions, or customize the types of activities proposed to patients/participants. Moreover, they can monitor users’ profiles with detailed analytics describing their behaviors and aggregated trends.
• Privacy and ethics compliance: In EREBOTS, all the sensitive/personal information are solely under the control of the user, who can make any decisions concerning storage and sharing of her information. Through the Pryv.io platform integrated into EREBOTS, users may configure fine-grained access control or even entirely remove their data if they decide so.
• Multi-campaign implementation and testing: EREBOTS has been employed and tested in scenarios such as smoking cessation and balance enhancement exercises (physical rehabilitation) for older adults during social confinement (due to COVID-19 restrictions).

EREBOTS proves that assistive agents can interact with each other in the back-end: 

• opening the door to knowledge sharing for campaign-related investigations

• Allowing medical personnel to access real-time aggregated and personal information of the individuals participating in a given campaign
• Enabling multimodel knowledge representation which can be enabled for simultaneous campaign executions, 
• Fine-tuning data-/action-driven personalization strategies
• Allowing users to be monitored via direct feedback collection
• (Re)defining online therapies and campaigns story lines
• By using the the data schema defined as Pryv streams typically serialized in JSON and possibly exposed using semantically rich representations (e.g., HL7 FHIR—ongoing work in EREBOTS); 
• Proposing (pro)active mechanisms that  can be tailored to a specific case study
• Storing users’ data in a stream-based privacy-compliant system solely managed by the user.

Source: https://www.mdpi.com/2079-9292/10/6/666/htm

About the eHealth unit of the Institute Information Systems HES-SO Valais-Wallis

The eHealth unit is part of the Institute of Information Systems of the University of Applied Sciences and Arts Western Switzerland (HES-SO). Based in Sierre (Valais, Switzerland), the eHealth unit undertakes applied research in close collaboration with public or private companies and institutions. It has gained solid experience with complex interdisciplinary projects related to digital health, at national and international levels. The eHealth unit has for instance invested many research efforts in the development of sensor-based mHealth applications for chronic diseases (e.g. diabetes type 1 and 2). Furthermore, the unit has developed expertise in health record data interchange and the usage of standards (HL7, FHIR), as well as the development of privacy and anonymity preserving algorithms for health data exchange (Nano-Tera.ch ISyPeM2 project). It is also working on blockchain-based healthcare data management and on a prototype of a framework for managing and sharing EMR data for cancer patient care. It is investing many efforts in personalized health support, such as for coaching in physiotherapy, or smoking cessation programs run on social networks with chatbot supports.

About Pryv

Pryv makes essential software for data-driven healthcare innovation. Our purpose-built middleware helps organizations manage personal data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. For more information: pryv.com

The post HES-So Valais presents EREBOTS: Privacy-Compliant Agent-Based Platform for Multi-Scenario Personalized Health-Assistant Chatbots using Pryv.io eHealth backend appeared first on Pryv.

Rheumatic conditions are a problem that affects a great percentage of the world’s population, with a particular incidence in the elderly, since these diseases tend to increase with age. The time gap between medical appointments makes it difficult to monitor patients’ symptoms and experiences. COTIDIANA supports data collection at home, in a more holistic and efficient approach, through self-report by the patient (signs, symptoms, quality of life), and also by passive sensing which enable the analysis of information such as manual dexterity, gait, physical activity level and sociability patterns (indicative of well-being and mental health).  

The COTIDIANA solution will include a smartphone app for patients and a web portal, that will be accessed by health professionals and that will display data since the previous visit to the clinician. Data collection will contribute to people’s medical care and drug trials. For the platform development, 130 people will be included in 3 clinical trials, which are planned for 2022 in Austria and in Portugal. 

Pryv.io eHealth backend is used for the patient consent, the data collection, structure, sharing and storage, the integration with eCRF form and other clinical and hospital systems, as well as the foundation on which the COTIDIANA mobile and web-interfaces will be developed. The privacy-by-design and distributed data storage, alongside with the consent management and auditing capabilities of the Pryv.io eHealth backend will allow to achieve full compliance with GDPR, Swiss DPA, the specific ethical, clinical data and data protection regulations within the partnering and clinical institutions in Portugal, Austria and across Europe and will greatly facilitate complying with MDD and SaMD certification process. 

Starting in April 2021, the COTIDIANA is a 28-month project, financed by the AAL programme which involves 6 international partners: Fraunhofer Portugal AICOS, Universidade NOVA de Lisboa, Definition12 AG, Mag. Andreas Raffeiner GmbH, Medizinische Universität Wien, and Pryv SA.  

The Pryv.io eHealth backend is available in open-source and under licensing agreement.  

https://pryv.github.io/www/open-pryv/ 

https://github.com/pryv/open-pryv.io 

https://pryv.github.io/ 

The post Pryv.io is used for the development of COTIDIANA mobile solution for remote monitoring of people with rheumatic conditions.  appeared first on Pryv.

From traffic congestion reduction to utility consumption improvement, care services optimization, new environmental and circular economy perspective, smart cities promise to enhance our lives in almost any aspects. Who hasn’t dreamt of such a utopia?

For every improvement in the city, though, there are significant risks for privacy that if neglected could lead to very damaging results for us all, if not the ultimate rise of surveillance capitalism, turning utopian intentions into dystopian catastrophe. In this context, solving the underlying privacy issue has become a must-have priority for anyone involved in smart city developments.

Myth: Thinking that digital innovation can only be achieved at the expense of privacy. 

Should we really make a choice between boosting smart-city initiatives vs privacy?

This has been the question in numerous discussions around smart cities concepts and projects.

It is indisputable that access to vast amounts of personal data is needed to make our cities smarter and enable digital enhancements. Yet in light of recent events that casted a harsh light on the notion of personal data collection and privacy respect, it would seem that the only way to ensure no harmful, unauthorized use of the data is to not share data at all.

So what trade-off should we make?

• should we enable city improvements at the cost of privacy? 
• Or should we protect privacy at the cost of general welfare and accountability? 

The common mistake here consists of thinking that digital innovation can only be achieved at the expense of privacy. 

There is this unwavering myth that privacy is the price to pay for better, personalized services, security or mobility in the city. Protecting data and privacy rights, however, should not be up for a trade-off in any future smart city.

So what if there was a better option? The release of Open Pryv.io shows that there is a way to encourage personal data collection being done right.

Reality: “Privacy doesn’t have to be only secrecy. We envision a world where privacy is the ability to share your data with awareness and control.” – Evelina Georgieva @ Pryv SA

Ultimately, locking all access to the data is not a sustainable solution if we are aiming for a brighter, technology-enhanced future. Benefiting from data-fueled solutions would not only help improve the city at many levels, but also provide us with new opportunities for self-development, bringing awareness to our patterns and unsustainable behaviors.

Finding “luxury in self-reproach”.

At some degree, smart cities could promote accountability and we might even find that there is some “luxury in self-reproach”.

Imagine a world where users would be able to step up and face the reality of their behaviours and impact on the planet, and where providers would offer the users real control over their data, including the ability to verify that it is used rightly, as well as real choice and transparency as to who and what services can access their data at a granular level.

It’s up to us to make this world the reflection of our reality.

So where to start to make it happen?

The real deal: Consensual Privacy-Preserving Data Collection and Management

Relying on privacy-preserving technologies might just be the perfect option to start your project on solid rock foundations. There have already been a number of existing solutions that will greatly help you not only save time and resources, but develop smart cities applications rightly.

We do have something for you as well: a ready-to-use, privacy-focused back-end solution to enable embedding such technologies to your project while addressing all personal data lifecycle management aspects, including consent management, interoperability and scalability. 

Pryv.io middleware is a development tool for developers which is solving challenges in personal and Real-World data collection, structuring, aggregation, processing, sharing and storage (from any data source: biometric, IoT, sensors, geolocation, weather forecasts, etc.) for different applications:

• Urban development, mobility, driver’s behaviour, traffic management
(GPS location & acceleration of vehicles)
• Smart utility consumption: sustainable energy and water household use and saving
(metrics from electrical and water counters and sustainable resources usage)
• Smart Housing
• Smart hospital and healthcare services
• Citizen behaviour analysis
 (phone location and aggregation of data from public transportations, shopping behaviour)


Based on a privacy-by-design, user-centric approach, Pryv’s technology allows development teams to build and manage smart digital data infrastructures and applications, delivering data transparency and auditability, multi-level data sharing and processing, within the respected data protection layers which apply within each and over multiple cross-industry and specific user/citizen groups requirements.

Among Pryv’s features:

• Personal Data Lifecycle management
• Data pooling 
• High-data IoT data input- ingestion
• Data Residency
• Webhooks
• Consent Management

Are you working on a smart city project?

Processing personal data?

Analyzing consumers behaviors?

10 facts developers should know when developing personal data collecting apps

Check out our code available in Open Source and book a meeting to know how Pryv can help you shape the cities of the future in full respect of privacy and cross-industry regulations.

Yours,

Stephanie & Evelina

Sources:

https://www.eco-business.com/news/smart-cities-of-the-future-eco-utopia-or-dystopian-nightmare/

https://www.weforum.org/agenda/2019/12/smart-cities-help-residents-privacy-concerns

https://www.theguardian.com/cities/2019/jun/06/toronto-smart-city-google-project-privacy-concerns

https://blog.openmined.org/society-runs-on-information-flows/

The post Building Privacy-Preserving Smart Cities: Myth or Reality? appeared first on Pryv.

Lausanne / Aubière 16th Feb 2021 Pryv SA and Agaetis announced a strategic collaboration to ensure the rapid digital transformation in industries collecting personal data. 

Incorporating natural human commitment, usability-centricity and subject matter expertise in privacy-by-design, Pryv and Agaetis deliver best in class digital transformation solutions respectful of privacy and seamless digital experiences, faster, at an optimized cost and right the first time.

“This partnership is for us, Agaetis, a great opportunity to co-work on great projects with Pryv, and its high level of expertise team. We feel that we are complementary partners to address companies’ needs regarding data privacy and its management, from the solution edition to its deployment, its setup. Our competencies allow us to even design and create bespoke applications for a full package.”  says Nicolas Roux, CEO at Agaetis.

2020 and Covid-19 undoubtedly accelerated digitization in any aspect of our lives, making a strong push over the technology tipping point at unimaginable speed. Companies have rapidly started developing digital platforms that process customers’ personal data pumping great amounts of user data into their system: from digital health and remote monitoring of patients, education, infrastructure optimizations and consumer behaviour analysis in almost any industry one could think of. For each of these new digital offerings, there are a number of privacy pitfalls that if neglected will easily lead to very damaging results and loss of business. Meeting the highest privacy regulations became must-have priority for development teams.

“Solid, flexible, ready to use, here are some adjectives that perfectly describe why we trust the Pryv.io solution. Perfect if you want to deploy a data framework managing data privacy, we figured out that it’s still manageable to even adapt it to an existing data management solution, as we experience it with one of our projects. The easy-to-use and heavily documented open-source tool, as well as the good communication with the Pryv team, confirm our choice! We are convinced that we will use this privacy solution in our projects, of course in the healthcare field but we are confident that it could be deployed on others.” says Nicolas Roux, CEO at Agaetis.

Yet, to achieve winning digital transformation, technology is not enough on its own: understanding the relation between humans and technology is crucial to develop sustainable digital transformation. Often misunderstood, human-centric digitalization is not just about engaging UI and UX. 

“To deliver a truly human-centric digital experience, it is essential to focus on key concepts about exactly understanding user needs, so that benefits exceed the cost of sharing personal data. This is the first and most critical step on building trusted, long term relationships.” says Pierre-Mikael Legris, CEO at Pryv “We are very excited to collaborate with Agaetis: Passionate about innovative technology and cultivating collective intelligence, Agaetis integrates this cocktail into its productions. Data science and AI are in Agaetis DNA. Blended with our expertise in data privacy and Pryv.io technology stack for data acquisition, management and storage, we can offer a complete 360 digital transformation solution. “ 

About Agaetis:

Based in Paris, Lyon and Clermont-Ferrand, Agaetis is the Data and Innovation consulting subsidiary of the Novencia Group. It is a large family of 400 people with more than 60 consultants and experts in data sciences. Agaetis is a firm that upholds convictions and takes responsibility for the sectors that will shape our future environment: health, agriculture, industry, mobility and energy. Their partners and references are the basis of their experience, their capitalisation. It becomes their strength to advise and provide relevant solutions. For more information, please visit: https://www.agaetis.fr/

About Pryv SA: Pryv makes essential software for personal and health data-driven innovation. Our purpose-built middleware helps organizations manage personal data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. For more information, please visit pryv.gihub.io/www

The post Agaetis and Pryv: Re-imagine Digital Transformation with Confidence in Data Privacy and Human-centricity appeared first on Pryv.

The Paradox of TeleMedicine in Pandemia – beyond the buzzword, an (un)expected reality

To speed-up the development of telemedicine solutions, Dreamix, a partner of Pryv, is developing an OEM modular communication tool which is to be offered to software and hardware companies. Developed on the basis of Pryv.io, the solution would enable secure, instant communication and sensitive data transfers, following highest privacy standards and ensuring full control over the provided information.

Privacy-by-design, embedded consent management, easy data integration, guaranteed data safety, allowing patients to remain aware of how their data is handled following the Swiss DPA, GDPR, HIPAA and other health and personal data protection regulations,  this patient-doctor communication layer will greatly simplify and support the development efforts of clinics, software and hardware healthcare providers which would like to offer trustful, secure, digital communication between doctors and patients.

Request demo of the modular OEM telemedicine communication tool for clinics, software and hardware healthcare providers.

The post A modular white-label communication tool to simplify telemedicine development: By Dreamix & Pryv appeared first on Pryv.

As experts of data privacy, at Pryv, we continuously invest our best efforts to deeply investigate how data protection regulations might affect your company and what you should keep in mind when dealing with sensitive personal data.

While the GDPR has already started to collect its fees from non-compliant companies, the European Union keeps tightening up its digital market standards, and third countries like Switzerland might be left with no choice but to adapt if they want to keep exchanging data with Europe. So where do you stand in the middle of all these regulations?

In this article, we will try to provide you with a comprehensive overview of the current Swiss-EU privacy landscape, and help you prepare for what’s coming next.

GDPR

If you have a Swiss company and you’re dealing with sensitive personal data, chances are that GDPR-compliance has been your concern for some months now.

Effective since 25 May 2018, the GDPR raised the bar at a whole new level for data protection and privacy regulations, leaving tons of companies collecting and/or processing EU citizens personal data with the only choice of either complying, or paying fines up to €20M or 4% of annual income. And this was just the beginning.

At its core, GDPR is a response to a need for action. But the GDPR was not only designed to ensure an adequate level of data protection for EU citizens. It was also designed to set up a new standard, and help implement the current European strategy for a EU Single Digital Market.

So how exactly might this affect your company? Well:

• Privacy rights of European citizens are not limited by European borders (ref: https://gdpr-info.eu/art-3-gdpr/): so whether your company is based in Europe or not, if you want to expand your offer of services to EU citizens (or even monitor their behaviour within the EU), you will have to comply with the GDPR first.
• Personal data transfers outside the EU are subject to numerous provisions under the GDPR (ref: https://gdpr-info.eu/art-44-gdpr/): so at some point, if you want to exchange data with Europe, you may have to demonstrate that your company provides an adequate level of data protection for this data.
• The Swiss Data Protection Act (“Swiss DPA”) has been revised and will force Swiss companies to better align with the European standard: so even if you’re a Swiss-only business, you will still have to comply with a number of GDPR-like requirements.

Also, if you’re in the healthcare business: the GDPR provides an extra level of protection regarding the processing of specific personal data like genetic data, biometric data and any data concerning health (Ref: https://gdpr-info.eu/art-9-gdpr/), adding yet another level of requirements to meet with.

Did you take all that under consideration?

Swiss DPA

The GDPR does not only affect Swiss companies, but also Switzerland itself.

As a new Swiss DPA (“revDPA”) has been adopted by the Swiss parliament in September 2020, a number of GDPR-like requirements will soon make their appearance in the Swiss legislation as the GDPR was largely taken under consideration during the revision.

For example, the revDPA introduces a right to portability, a duty to inform of any personal data collection, and an obligation to keep an inventory of processing activities, similarly to what is currently provided by the GDPR.

So what does this mean for you? Well, even if you’re not dealing with Europe and are not planning to, if your company falls under Swiss DPA, you will have to comply with all of its new GDPR-like requirements when the revDPA comes into force.

To know more about the key amendments and its impacts on Switzerland, we encourage you to read the text of the revDPA project and the sources provided at the end of this article, especially this one, by François Charlet, which highlights the changes and measures to be taken.

Another thing that you might want to keep in mind is that all of these new obligations will largely apply as soon as the new law comes into force. And as outlined in an article written by Walder Wyss Associates, sharing recommendations for revDPA implementation, “the implementation of the revDPA requires early planning“. 

Therefore, even if the revDPA is expected to come into force in 2022, we strongly advise Swiss companies to not wait until then to start preparing for it.

ePrivacy

As said before, the GDPR was just the beginning.

In the pursuit of its strategy for a single digital market and to reinforce the level of privacy protection of its citizens, the EU is now under discussion to endorse a new regulation intended to replace the current ePrivacy Directive and specify/complement the GDPR: the ePrivacy Regulation (ePR).

To keep it simple, the ePR is having similar focus as the GDPR but specifically targets electronic communications. From that perspective, it is most likely that Swiss companies will be impacted, too. A revised draft for the ePR has just been released in November 2020.

So what should you know? Well, since the ePR is intended to specify/complement the GDPR:

• If the GDPR applies to you, so could ePR if your offer of services extend to electronic communications.
• In case of conflict between the two regulations, ePR will take precedence over the GDPR (which means it will be applied first).

Also, ePR fines for non-compliance are expected to be as high as in the GDPR: so in case of infringement, you could have to pay a fine of up to €20M or 4% of your company’s annual income (whichever is higher). Wouldn’t it be better to invest into a compliance strategy instead?

While the ePR is intended to particularise and complement the GDPR, it is also foreseen that it “will have a disruptive effect on companies’ digital strategies, which will need to be redefined to meet the new requirements.” However, it doesn’t necessarily have to.

As we like saying at Pryv, in cases like this, you just have to establish a solid and scalable foundation prior to building the house. Thus, you’ll be sure that eventually, your system components will be scalable to comply with any new forthcoming requirements.

And if you’re in the healthcare business…

ePR is not the only new EU regulation that is to be expected within the next few years. As Europe keeps raising the standards of its regulations, a new regulation for medical devices is also making its way towards the EU market: the Medical Device Regulation (MDR).

Especially, if you’re developing a mhealth app: MDR could become a major concern for you as your software could now be registered as a “medical device” under this new legislation, adding yet another level of requirements to comply with.

As it may feel like a downfall of complex challenges for your company, it doesn’t have to be.

Get your MDR compliance done right: explained in a less than 5 minutes read

Since 2015, we have been discussing with hundreds of healthcare innovators and listening to their needs, so that we could help businesses like yours build solutions that respect not only data privacy and protection regulations, but also existing and forthcoming regulations for managing personal health data.

The end… or the and?

By design, when we decided to bring Pryv.io on the market as a ready-to-be-used solution for personal and health data, we invested in making sure that we can ensure your products can easily benefit from integrated compliance over different industries and market-specific regulations.

Book a demo to know more about how Pryv.io can help you comply with Swiss DPA, GDPR, ePrivacy and boost your time to market, turning your compliance investment into a competitive advantage.

Yours,

Stephanie & Evelina

Sources:

• https://gdpr.eu/
• https://gdpr-info.eu/
• https://www.parlament.ch/en/ratsbetrieb/suche-curia-vista/geschaeft?AffairId=20170059
• https://www.pwc.ch/en/publications/2018/e-dsg-pov.pdf
• https://ec.europa.eu/digital-single-market/en/proposal-eprivacy-regulation
• https://www.dataguidance.com/news/eu-presidency-releases-revised-draft-eprivacy-0
• https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CONSIL:ST_9931_2020_INIT&from=EN

[to know more about the new Swiss DPA]

• https://www.parlament.ch/centers/eparl/curia/2017/20170059/Texte%20pour%20le%20vote%20final%203%20NS%20F.pdf (revDPA text)
• https://www.lexology.com/library/detail.aspx?g=76e7877a-a433-45bc-a6b0-30cb095b51b5
• https://francoischarlet.ch/2020/nouvelle-lpd-ce-qui-va-changer/

The post GDPR, Swiss DPA & ePrivacy – what Swiss companies should know appeared first on Pryv.

Today, transatlantic personal data transfers have become common practice. Under the GDPR though, these transfers are subject to numerous provisions, in particular to ensure that the data will benefit from adequate protection, even when being transferred abroad. In this context, the EU-US Privacy Shield Framework was designed to provide companies “with a mechanism to comply with data protection requirements when transferring personal data from the EU to the US”.

In a landmark decision that shined a light on data protection issues relating to these transfers, on July 16, 2020, the Court of Justice of the European Union (CJEU) invalidated the EU-US Privacy Shield, leaving tons of companies with more questions than answers about how to address this issue. Indeed, following this decision, any and all data transfers once valid under the EU-US Privacy Shield ought to be revised in order to remain GDPR compliant.

Some well-recognized organizations took actions to identify alternative solutions, like Cytowski & Partners who suggest the following alternatives for companies impacted by the decision:

• to relocate data processing operations inside the EU and cease EU-US data transfers;
• to rely on Standard Contractual Clauses (“SCCs”), as it remains a valid compliance mechanism for the transfer of personal data outside of Europe;
• to obtain individuals’ explicit consent to the transfer;
• to implement Binding Corporate Rules (GDPR Art. 47); or
• to rely, when appropriate, on specific derogations (GDPR Art. 49).

Updates for Standard Contractual Clauses (SCCs).

While the SCCs were not invalidated by the CJEU, the ruling introduced further requirements to be met in this regard. In addition, “a case-by-case assessment as to whether [the SCCs] have provided appropriate safeguards” is now mandatory for any affected companies. If proven to be insufficient, the SCCs shall and may be supplemented with additional measures to ensure an adequate level of data protection. In early November 2020, the European Data Protection Board (EDPB) adopted Recommendations on supplementary measures following Schrems II.

The invalidation of the EU-US Privacy Shield highlights the importance of relying on the right solutions, in particular to prevent companies from being disrupted by such decisions. For a company having to address such issues post-disruption, it can be very hard as it requires to have the resources and knowledge to do so. However, ready-to-use data management solutions that allow for privacy compliance and flexibility over time exist and could help in this matter.

Our on-premise software Pryv.io, for example, allows for distributed data storage to enable local regulations compliance, and also to create installations that span the globe and co-locate the data with the users’ legislation. Based on a powerful per-user and privacy-by-design approach, each user data can be stored in a different server, which can be relocated anywhere if needed. Pryv.io also provides a clear data sharing mechanism and consent management solution, thus enabling companies to easily update their customers’ consent at a granular level.

De-risk your compliance with data-audit at Pryv.io.

Updates for Swiss-US Privacy Shield as of September 2020.

Following “Schrems II” ruling, the Swiss Data Protection and Information Commissioner estimated that the Swiss-US Privacy Shield does not provide an adequate level of protection for Swiss-US data transfers and the mention “adequate level under certain conditions” was removed for the United States. Although the Swiss-US Privacy Shield was not invalidated at that time, Swiss companies are advised to rapidly start addressing this concern.

Yours,

Stephanie & Evelina

Sources:

• https://curia.europa.eu/juris/document/document.jsf?text=&docid=228677&pageIndex=0&doclang=EN&mode=lst&dir=&occ=first&part=1&cid=10295984
• https://curia.europa.eu/jcms/upload/docs/application/pdf/2020-07/cp200091en.pdf
• https://edpb.europa.eu/news/news/2020/european-data-protection-board-41st-plenary-session-edpb-adopts-recommendations_en
• https://cytlaw.medium.com/privacy-shield-got-canceled-what-now-790cba542c84
• https://www.lexology.com/library/detail.aspx?g=6ec88853-1da9-4327-923c-2f909c7a89fe
• https://francoischarlet.ch/2020/cjue-privacy-shield-invalide/
• https://www.rts.ch/info/suisse/11588815-les-donnees-des-suisses-ne-sont-pas-assez-protegees-aux-etatsunis.html

The post EU-US Privacy Shield Invalidation: must-known essentials when processing personal data appeared first on Pryv.

There have been many expectations towards telemedicine during the last few months. While sanitary measures were rapidly put in place to decrease the spread of the disease, a suitable solution had yet to be found to ensure that sick patients would not be denied access to primary care in the pursuit of containing the epidemic. Telemedicine was expected to address this concern and make it possible for everyone to get medical help in this time of crisis. Is this really what happened though?

TeleMedicine in Pandemia: expectations vs. reality

At the edge of the second wave of the disease, the question as to whether our reality caught up with our expectations is now more relevant than ever. That is, can we say today that telemedicine has made its way to address burning needs arising from current and forthcoming lockdowns and contact minimization policies? While the adoption of tele-solutions has grown significantly in many areas, the same seems still hard to say for the healthcare sector. In Switzerland, particularly, telemedicine appears to be more of a hard pill to swallow than a widely accepted solution.

This reluctance to adopt telehealth innovations at a time of increasing need for medical care and help raises concerns at many levels. In April 2020, cardiologists were already warning about a decrease in consultations for heart disease. In their opinion, it wasn’t that there were less sick patients in this regard, but rather that these patients stayed home due to a confusion with covid symptoms or by fear of going to a hospital. At the same time, care facilities were often advising people with possible covid-related symptoms to stay put in quarantine. For people experiencing a mental health worry, accessing medical support in-person became equally far less straightforward. “So where can people find the trusted help they need?”

TeleMedicine in Pandemia: why the low-rate adoption?

If arguments referring to the complexities of remote consultations were valid at a normal time, they seem hardly convincing when they imply to deny access to primary care during a pandemic crisis. More than ever, we need to push through our fear of change and find solutions that not only “restrict” but are also supportive of the people who need it the most. For example, countries like Germany found a way to recognize “apps on prescription” and to procure doctors and insurers with an up-to-date legislative framework to foster the adoption of digital health solutions. Is this what we lack in Switzerland to make telemedicine a reality?

Either way, given the current situation, to not embrace technology enabled solutions might no longer be an option. Especially considering that adopting telemedicine could help the system absorb the increasing demand for medical help so that more patients can have access to proper treatments, whether in physical, 1-1 consultation or from the comfort of their home. For patients with chronic disease, it could even be life changing. A recent example is the HeartKinetics cardiac monitoring solution that allows patients to easily monitor the cardiac function from home in less than 2 minutes, saving time travelling to the hospital and receiving more frequent analysis.

However, despite all the benefits that such a solution might represent, the low-rate adoption still appears to persist and telemedicine itself  seems to be still perceived as limited in a number of aspects. 

“Collecting information with existing tools and helping patients when they are not physically present is common practice. During the pandemic patients would not come to the office for good or bad reasons, and more often mail photos and call for advice. This actually did grow TeleMedecine while requiring as usual accurate documentation in the existing electronic system. Why then move fast forward to engage with new applications which claim to enable better TeleMedecine? The digital transformation is an engine of economic growth. But at the scale of a general medicine practice for it to be of benefit, there must be incentives that engage the “hearts and minds” of physicians. Two hurdles remain: first, real integration of the single problem solutions, who actually match only part of the many specific needs. Second, to go beyond the digital transformation will always require a humane personal relationship even without the patient being present.”  Pietro Scalfaro, Pediatrician.

TeleMedicine in Pandemia: the privacy dilemma

Another concern that seems to contribute to the reluctance of adopting telemedicine to face the epidemic is the privacy dilemma. While technologies are certainly recognized as a valid solution in the fight against the virus, many say that privacy is a main concern. Still, solutions exist. Since the pandemia, a lot of efforts have been invested into finding privacy-preserving solutions. For example, we at Pryv made our solution available in OpenSource so that anyone can benefit from a free, privacy-by-design, swiss-made software solution on top of which they can rapidly create and build their own digital applications.

In parallel, telemedicine providers like Umana, DTHX, Riva Digital, HeartKinetics provide doctors, patients and care facilities with ready-to-use, proven telehealth solutions, having privacy at their core. Together with our partners Dreamix, Pryv is also working on a new set of module components which will allow any provider willing to launch telemedicine and digital health solutions to be ready to go to market within a few days/weeks only from the start of the project, choosing the components that they need the most while embedding a strong solution for patient consent and privacy-by-design.

Maybe now is the time to turn our expectations into a reality?

Yours,

Stephanie & Evelina

Sources:

https://www.swissinfo.ch/eng/coronavirus–a-turning-point-for-telehealth-in-switzerland/45870678

https://www.rts.ch/info/suisse/11230872-les-patients-noncovid-desertent-les-urgences-inquietude-des-medecins.html

https://www.thehtn.co.uk/2020/10/14/htn-voice-mental-health-apps-must-win-trust-in-how-they-use-data-if-they-are-to-achieve-potential/

About Pryv SA:

Pryv makes health personal data processing as secure and trustworthy as online banking.

Pryv.io is a solid foundation on which you build your own digital health solution, so you can collect, store, share and rightfully use personal data. It comes with must-have consent and auditing tools to keep you compliant with existing and forthcoming regulations. The software has been developed to accommodate rapid integration, allowing you to properly manage your users’ data from day one. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management, and comprehensive auditing capability that radically cut IT risk, development costs and accelerate time-to-benefit while addressing the GDPR and the most stringent data protection requirements.

The post The Paradox of TeleMedicine in Pandemia – beyond the buzzword, an (un)expected reality appeared first on Pryv.

Since the adoption of the GDPR, we all expect developers to embed privacy into existing and forthcoming software applications. But ask a thousand people to define what privacy is and you’ll get a thousand different answers.

For some, privacy is nothing more than secrecy. For others, it is everything related to their lives. Yet somehow, we expect developers to know what the “right” answer is for everyone. Arguing that all they have to do is to “respect users’ privacy” when developing personal data collecting apps. But how exactly? This is the part that we never talk about: how privacy should effectively be embedded into existing and forthcoming designs.

Hacking the privacy principles: turning legal requirements into 1s and 0s

If it is easy to say that developers should respect users’ privacy, hardcoding these principles into software systems is certainly not. Still, that is precisely what is expected from them, as the GDPR provides numerous privacy principles for developers to implement. What it does not provide though, is a clear guidance on how these principles should be implemented.

As a result, we observe that GDPR concepts like “data minimisation” are still a blur for lots of people. Indeed, according to the regulation, “Personal data shall be: adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (‘data minimisation’)”. But what is adequate and relevant to someone might be interpreted in many different ways. So how can developers know that they have it right?

Mostly, they don’t. In their study Why developers cannot embed privacy into software systems – an empirical investigation, researchers Senarath and Arachchilage specifically recognize this fact as one of the main problems developers face when attempting to embed privacy into their designs: they simply don’t know how to verify that they’ve done it right.

Now if they would go deeper into the GDPR, developers would know that: “appropriate technical and organisational measures, such as pseudonymisation […] are designed to implement data-protection principles, such as data minimisation” (art. 25 § 1 GDPR). The thing is: do you know many developers who actually have read the 88 pages of the GDPR? Certainly not. And even if they did, would they be able to keep track of all the data protection principles that it refers to and understand how to interpret them?

We don’t expect lawyers to be able to implement technical solutions. So why expecting developers to be able to understand and navigate the law?

Minding the gap between tech and privacy experts: a collaborative approach

Clearly, this situation requires a collaboration between all these different subject-matter experts – lawyers and developers – so that they can build digital solutions that are both legally rightful and technically feasible.

At Pryv, we understand the burning need for such solutions, which is why we provide any developers with a ready-to-use software foundation on which they can build their own personal data collecting apps. Call it GDPR, CCPA, PIPEDA or any other existing of forthcoming regulation that regulates privacy and individuals’ rights, our software was built to help developers address the complexity of such privacy-by-design legal requirements and meet business constraints such as short-term deadlines and restricted resources.

Expectations can equal Reality

Today, we have set-up high expectations to have everything available on a click away. While it is easy to blame why privacy is not respected, it is yet difficult to challenge the reality of the situation…

So really? Are developers lawyers to be? Might be not, as solutions are there to help: 

Check out our work at Pryv: embedding privacy into software apps

Now available for free in open source: [github-link].

pryv.com

Stephanie & Evelina @ Pryv

Sources:

• https://arxiv.org/ftp/arxiv/papers/1805/1805.09485.pdf
• https://eur-lex.europa.eu/eli/reg/2016/679/oj

The post Are developers the new lawyers to be?  Embedding privacy into software apps appeared first on Pryv.

Technology made it possible to have the world at a fingerprint. As a result, every day, millions of users leave their marks in the digital world, making it possible for companies to frame them into predictive, insightful “little boxes”. The question of whether it is for good or not will depend on how they will use this information. Is our personal information treated and used with ethics? Beyond what the law says, personal data and privacy regulations such as the GDPR or CCPA, we all have an inner sense of what is right and what is wrong. Digital Ethics is something that we all wish to believe in, but few know about it.

The Loud Silence of Digital Ethics  in personal data mobile apps

Futurists foresee a world where everything would be technology-enabled. Some even picture it as the perfect utopia. A world where criminals would be caught before they even act. Where patients would be cured before they get sick. And where everyone would find love. A world governed by justice, health and ideal match. A perfect world… or maybe not?

While striving for this world, the line between right and wrong became blurred. And all of a sudden, what was supposed to turn into a dream ended up reflecting an alternative nightmare: a world that could be governed by “secret” mass surveillance, biased algorithms, and companies leveraging personal and health data to increase their profits; convincing themselves that they are, ultimately, doing it for the “greater good”. Does the end justify the means though?

Much has been said about technology enhancement, the power of personal data in enabling personalized services, offering, care and treatment. Unevenly, opening-up the Digital Ethics Pandora box is a taboo. Without any further delay, now may be the time.

The road to hell is paved with good intentions.

It always starts with a good idea. “Make the world a better place”. “Save the world”. Yet most of the time, without a strong ethic to frame it, even ideas that started with a “don’t be evil” mantra are doomed to perdition. Almost everyone has lost faith in the very notion of privacy. Trust needs restoring. As being “data plumbers” at Pryv, we see it a lot happening with personal data collected via mobile applications. Inspired to make a big change, however, innovators often lose themselves in what is right and what is not. It is not that the technology or the idea behind it is necessarily bad in itself. But like everything, if you don’t know your limits, you will eventually end up beyond them.

Despite often being hidden behind numbers, personal data can reveal a lot about individuals. What people eat, where they go, who they love. In a perfect world, these data would be used to suggest the perfect restaurant, optimize transportation, pay for what you use, not more and save us from a life of loneliness. In today’s world though, this same data can equally be used to escalate insurance pricing, enact citizens’ surveillance, and manipulate thoughts and behaviours on command. And without the enforcement of a strong ethics to surround personal data collection, this might just become our permanent future.

The Yin & Yang in Digital Ethics.

We can envision two mirroring worlds where the border line is Digital Ethics. On one side, being mindful of what is right can open up a world where we will all be doing well, healthier people and happier insurers, empowered citizens and fairer judges. Or, on the mirroring side where the code of digital ethics is not respected, we can end up in a world where we are all prisoners of our own digital twin. A world governed by fear, predictability and surveillance capitalism.

So which one is it going to be? At Pryv, we envision a world where Privacy is the norm. And while it is true that we cannot control the future, we are still empowered to make decisions today that can allow for better privacy tomorrow. In fact, it is that simple: it is a matter of choice to do it; nothing more, nothing less. Let’s build a world where treating users with respect will pay back: so be transparent, consent-centric, restore trust and build meaningful relationships with your users. 

Since 2012, at Pryv, we deliver businesses a solution to empower them building trustful long-lasting relationships with their users, manage personal and sensitive data rightfully, being confident in processing, but not « shy » for asking for more. More data brings more insights and we are all willing to share more when we trust. 

The first step is always the hardest, but we got your hand:

Privacy-first Digital Ethics Handbook.

1. 1. Respect the moral principles: apply the “do no harm” principle to personal data.
   2. Establish norms dedicated to ensure that the autonomy and dignity of users is respected: Provide your development team with the tools to implement it “rightly”.
   3. Allow your users to shape the debate and make informed choices.

The Personal Data Economy is Raising! We are offered a lot, but we have lost the essentials. Be that service provider that is there to last. Respect Digital Ethics, Develop privacy-first. 

Yours,

Stephanie & Evelina

“Personal data aggregation, sharing and processing should be as effective, secure and trustworthy as online banking. In this new paradigm, privacy is not a compliance tick box but an opportunity to break data silos, differentiate products and services, and attract end-users with trust, transparency and empowerment.” Pryv 

Additional Sources:

• https://www.accenture.com/_acnmedia/PDF-24/Accenture-Universal-Principles-Data-Ethics.pdf
• https://www.accenture.com/_acnmedia/PDF-22/Accenture-Data-Ethics-POV-WEB.pdf

The post The Loud Silence of Digital Ethics  in personal data mobile apps appeared first on Pryv.

Open Pryv.io software ready-to-go on Exoscale marketplace, allowing you to deploy Open Pryv instantaneously with minimal start-up configuration.

The privacy-minded IaaS platform Exoscale now includes Open Pryv.io on its marketplace,  among its collection of solution templates, services and components to boost productivity and strengthen application development.

Simple, free, and ready-to-use solution engineered to create and scale privacy-compliant products, services and experiences based on personal data. Companies willing to use Open Pryv.io can now do so by launching their platform in a breeze on Exoscale, and benefit from the powerful and high-performance European cloud service.

The Pryv and Exoscale partnership points out the way towards privacy-by-design as a critical tool to achieve compliance at all times, and become game-changers in proper data ownership. 

Through this partnership, the Exoscale cloud platform positions itself as a key enabler for personal data collection being done right from day one by developers, and strives to build a world where privacy would be the norm – and not the exception as it is today.

Building on Pryv.io ensures you secure access and compliant management of personal data today. Now launched in seconds with Exoscale.

About Exoscale: https://www.exoscale.com/

Exoscale is a European cloud platform that is both powerful and enjoyable to use. It offers services and on-demand resources that developers could use easily to test things out and build cloud native applications.

Exoscale allows developers to start virtual machines in seconds, store petabytes of data and easily integrate your on-premises or multi-cloud deployment.

About Pryv: pryv.gihub.io/www

Open Pryv.io is a free and scalable personal data lifecycle management platform specifically engineered to empower developers to rapidly create and scale breakthrough GDPR and HIPAA compliant products, services, and experiences. 

Based on years of tests & analysis, the software has been developed to accommodate rapid integration. Businesses in highly regulated markets, such as the healthcare industry, can benefit from using Pryv.io to manage personal data in a compliant way for the development of scalable personalized products.

The post Pryv.io Open Source Solution now available on Exoscale Cloud Platform appeared first on Pryv.

In its first year of operation, the association UniRares has developed a paper version of the PSPR in order to help patients take an active role in their medical care, as they are often the best-placed to know their own disease, for better or worse.

This summary document aims at gathering and structuring all the different medical information that has been built over time, and should be presented to physicians during consultations. It can also serve as a reminder for the patient on the questions that he would want to ask during a medical consultation, and helps the isolated patient to gather on one single document the medical history, the identity card of the patient, the symptoms, the medical journey, the successful or unsuccessful drugs, the analysis results and the positive or rejected diagnoses. The “patient support personal record” can also be a tool for patients to set and prepare questions for the medical specialist in order to set short-term, mid-term and long-term goals together.

When the paper version of the PSPR was finally released in summer 2019, the question of the digital version arose.

From paper to digital:  UniRares, LivingLab and the HES-SO Valais Wallis take the digital PSPR project forward.

As you may have seen in the newspapers, the electronic patient record (EPR) is being led by hospitals from the Swiss Romandie under the name of “CARA”, in particular by HUG and CHUV. CARA is expected to launch and to become publicly available this year. It will greatly facilitate the relationship among health care professionals, and will provide a continuous access to everyone to its medical record. All this in a legal clear framework, and within a validated and common exchange protocol. This is a huge step for us, as patients.

In spring 2020, thanks to a working partnership between LivingLab and the HES-SO Valais Wallis, the digital PSPR project has been taken forward.

Yannick Mermod – a final-year student from the section “Information System”, supervised by Dr. Prof. Michael Ignaz Schumacher and Benjamin Nanchen – Living Lab Manager, has chosen to work on a Web Application for the PSPR as part of his Bachelor thesis, and to make it more extensive than the EPR. More extensive, as the amount of data for patients suffering from rare diseases is more important than for other patients.

A patient suffering from a rare disease needs solutions adapted and designed accordingly to his own needs and specificities. His life is filled with administrative paperwork required by his health condition, over-complicated and absurd insurance pathways and countless medical appointments.

Usability and Privacy-centricity are the key components to  design a complete and up-to-date medical record, easy to be used on a daily use.

UniRares is convinced that the rare disease patient must have a complete and up-to-date medical record to facilitate its daily use. His data must be at the same time secure and easy to share.

As part of his Bachelor work, Yannick has analyzed the needs of UniRares and has selected the platform PrYv (pryv.gihub.io/www) to meet the requirements in terms of data storage. Mr. Pierre-Mikael Legris – PrYv co-founder, has demonstrated a high interest for this project, and has contributed to the project by sharing his knowledge of the platform and helping Yannick in designing the right data model.

The very first Web Application of the “patient support personal record” – UniRares is ready to be launched. 

It is thanks to these enriching encounters and the close collaboration between the different partners of the PSPR that Yannick Bachelor’s work has given rise to the Beta version in web format of the “personal patient assistance file” – UniRares. In order to make it available to its members, the next step will be to obtain support and funding to finance the improvement of the technology, as well as the hosting of the application and associated data, while guaranteeing privacy and confidentiality.

UniRares knows that patients suffering from rare diseases or without diagnoses are the weakest. Hence its wish to develop a mentoring program between UniRares members to set up and run this “patient support personal record”, while benefiting from each other’s experience.

This idea of mutual help is the DNA of the association.

Mélanie Gillard Almeida Oliveira                                    David Pecoraro

Unirares Vice-president                                                     UniRares President

Dr. Michael Ignaz Schumacher

 Professor                               

The post From paper to digital: Pryv selected as the data storage & privacy platform for the digital “Patient support personal record” by UniRares, LivingLab and the HES-SO Valais Wallis. appeared first on Pryv.

Data Localization: a business choice or a legal obligation?

We live in a world where information can travel across borders within a heartbeat. Yet, if it can be rendered anytime anywhere, it has to be stored somewhere at some point. 

Finding out where that somewhere should be can be quite a puzzle to solve. Preferably, you want it to be safe, compliant, as well as economically interesting. But mostly, finding the right location for storing valuable information is a legal conundrum that you will have to solve carefully. Especially when managing the personal data of users from various nationalities, as each country poses different geographic limitations as regards to data residency.

The challenges of finding a Safe Home for Your Data

Organizations might think that this is an easy task. But at a time of global data exchange and the multiplication of data privacy laws, choosing the right place for storing personal data is becoming increasingly challenging.

Depending on their business location, companies will have to address different legal requirements. Depending on the place of residence of their users, different expectations. And depending on the data they collect, even additional constraints and limitations. So how to keep up with all that?

#1 Address the legal requirements of your business location

One of the first things companies should consider when thinking about data storage location is where they are located and which data-related laws apply to their location.

Specifically, two things have to be checked: first, the scope of the law, which determines to whom, to what and where the law applies. Second, possible additional provisions such as the ones in the chapter 5 of the GDPR addressing the “transfers of personal data to third countries or international organizations”. Based on these indications, you will be able to get a first idea of what can be done or not within the borders of your country.

#2 know everything about your users’ location and their data

Another parameter to be taken into account when resolving the issue of data residency is the place of residence of the users and the type of data about them that are being collected.

Mostly, because some legislation defines their scope of application according to users’ location (like the GDPR). But also, because users are now more aware about data privacy and start to have higher expectations as to where their data should live. Besides, depending on the data collected, some additional constraints might be added by regional regulatory authorities, like the HDS Certification required for health data hosting in France.

#3 check the laws surrounding your third-parties’ location

Now for economic reasons, some companies may be tempted to have their data stored in a country that is neither that of the company nor that of their users.

Nevertheless, such decisions should be made wisely. The recent Shrems II judgment of the EU Court of Justice (CJEU) is a good example of why transferring data to a third-party country might be problematic as regards to users’ data protection rights. In particular, companies should consider the issue of having personal data transferred within the borders of a country where the law provides government access to these data.

So where is it, the “right” place for your data? Is it in the EU? the US? Or maybe a little bit of both? Choosing a data storage location should not be a matter of choosing a good compromise for all the data, but choosing the right location for each data separately, so that each user can feel secure about his or her data place of residency. So maybe, the “right” decision might be giving the users a choice as to where their data should live?

Now how can we help you with that? Companies can use Pryv.io’s decentralized design to individually store the personal data they collect according to their users location.

Take a peek at our solution: Pryv.io’s Regional data hosting distributed model.

Pryv.io is a personal data lifecycle management platform specifically engineered to empower businesses to rapidly create and scale breakthrough, privacy compliant products.

With Pryv.io, companies can easily store their data into a distributed environment to enable local (on- premise/per choice) Regulations Compliance, and even create installations that span the globe and co-locate the data with the users’ legislation.

Indeed, with Pryv, all data is kept per-user, making it very easy for our customers to redirect each data to a distinct server according to their users’ geographic locations. Based on a powerful distributed model, users are distributed among servers with no global bottleneck.

Each user account can be then stored on a different server, which can be located anywhere. The capabilities are set by the infrastructure in terms of bandwidth and storage. The architecture is designed according to the client’s needs.

Thanks to Pryv recent partnership with Euris Cloud Santé®, we also provide a complete data storage and privacy back-end solution. In France,  companies can efficiently meet both french HDS and data privacy and residency requirements.

Learn more about our different offerings: Pryv + Cloud Santé® PRIVACY

Stephanie & Evelina @ Pryv

pryv.com

pryv.github.io

The post Data Residency: insights on where to store the personal data you collect appeared first on Pryv.

Enlightenment in Delusion

The trust in the Internet has been lost. Yet we use technology more than ever before. Every single day, millions of applications are being downloaded and fed by personal data. Whoever knows what it is being used for. We have been promised to be protected. We have heard “privacy-by-design” many times now, but have we understood it? Probably we did not. As we are still being deceived-by-design by many applications.

Yet things are supposed to have changed. “Businesses took actions”, we wish to believe… And some of them really did. The problem, however, is that we see the majority of companies only partially resolving the personal data management and privacy compliance challenges. Whereas according to the GDPR, privacy should be embedded in every aspect of personal data collecting apps. Starting from the very beginning of establishing the relationship between the two parties, through the part that is visible for the users: the UI.

The Beauty and the Beast in UI: Privacy-by-design or Deceived-by-design?

UI Design is a big part of today’s software applications. More than a pretty look, it is what allows companies to interact with their users and guide them through their app. In terms of compliance, it is also what allows them to ask for users’ consent and provide their users with the means to execute their rights to privacy. Which is why companies should be careful not to include marketing practices that go against privacy requirements when building their designs.

Still, while we often speak about user-experience and user-engagement, we rarely discuss the “dark patterns”: the tricks used in UI designs to make users do things online that they would normally not do. Have you ever heard about them?

Dark patterns are the tricks that make you:

…Consent to things that you are not even aware of.

…Share more information about you that you really want to, an action that became popular as “Privacy Zuckering”.

…Pay for things you didn’t even want to buy in the first place.

Dark Patterns Examples

Whichever it is, it is highly probable that you have been deceived-by-design many times already. The problem is: while UI design can be used to nudge people into making the best choices for themselves, it can also be used to deceive them into sharing more of their personal data than they would usually like to. But what is the “right” choice for the user?

Nudging users into making the « right » decisions

If personal data collecting apps aren’t easy to implement in terms of compliance, they certainly aren’t easy to design in this regard as well. Practically: how to strike the right balance between best marketing practices and data privacy regulations?

When persuasion becomes manipulation.

While the GDPR poses legal frontiers to nudge companies into making the “right” choice for their users, recent studies show that they still have a hard time going against their own business interest especially at a time when data brokerage shows to be a particularly profitable business. Yet, there are other ways to monetize personal data, and even based on a privacy-approach.

Some pathways and actions are more enticing than others. Of course, it can be fun to use gamification techniques to make an App more appealing and increase users’ engagement, but some lines shouldn’t be crossed. Especially when speaking of mobile health applications. For example, mental health-websites that sell personal data, such as the results of depression tests, to 3rd parties – such as the case with Doctissimo.

Is it game over? Take it to the next level: Dark Patterns for good

Light the way. Dark patterns might be properly used. We have seen  typical ‘dark’ patterns, being used for the right reasons, for example in Open Banking. Ethically Evil: how to use dark patterns for good 

So, the question remains: how to strike the right balance between best marketing practices and data privacy regulations?

It is all about a shift in Mindset: Achieving privacy should not be seen as a problem, but rather as the goal. So Make trust your first priority! And next time you need to implement a new design for your app, start with “what” not “why”, and ask yourself: what is the goal of this application and how to ensure privacy-by-design, turning it into your winning ticket? You’ll be surprised what you can come up with!

Welcome to Privacy-as-a-State-of-Mind: We had a hand in. 

For us at Pryv, achieving privacy is not about resolving compliance, it is the goal: privacy as a norm. As a back-end privacy provider, we can certainly help businesses collecting personal data to embed privacy into their systems, ensuring that the data they are collecting is consented rightly, managed and stored, compliantly. Yet, this is just one side of the coin. Companies have to meet us halfway to build a fully privacy-by-design, compliant solution.

pryv.com

pryv.github.io

github.com/pryv/open-pryv.io

Yours,

Evelina & Stephanie

Sources:

https://www.darkpatterns.org/

https://hellofuture.orange.com/en/what-are-dark-patterns-and-their-impacts-on-personal-daa/ 

https://darkpatterns.org/types-of-dark-pattern.html

https://privacyinternational.org/news-analysis/3986/mental-health-site-sharing-your-personal-data-were-going-after-them 

https://www.fastcompany.com/90452333/why-you-still-cant-escape-dark-patterns

https://securityboulevard.com/2018/12/dark-patterns-stealth-ways-companies-collect-personal-data/

https://fil.forbrukerradet.no/wp-content/uploads/2018/06/2018-06-27-deceived-by-design-final.pdf

https://medium.com/@mohityadav0493/privacy-zuckering-deceiving-your-privacy-by-design-d41b6263b564

https://www.europeandatajournalism.eu/eng/News/Data-news/Dark-patterns-born-to-mislead

The post 50 Shades of “Dark Patterns” to deceive privacy regulations appeared first on Pryv.

Level up: light on the legal and ethical aspects of using gamification in mental mhealth apps

Mental Health has been seen as the “cancer of tomorrow”. The pandemic further strengthened the suppressive force turning this prediction into a reality. As for their part, researchers even show that there is an unprecedented increase in stress, anxiety and depression. And in the blink of an eye, tomorrow suddenly became today. 

In the context of mental illness, there is no “risk group” as it can hit us all – our children, co-workers, family members. The damages and consequences are long-term, life-threatening and life-changing. So, not a surprise, among other digital health applications accelerated during the pandemic, a number of mental health applications got their momentum to deliver on their promise: a click away to mental health and well-being. Is the promise delivered? While there is a robust growth of mental mhealth apps offerings, their usage seems to remain inconsistent.

Do people trust mental mhealth apps? Maybe “not”.

Trust is the very first principle that allows for engaging users in sharing enough data so that they can be given help. Yet today, people may be skeptical to engage with an app that keeps track of their mental health data and rightly so. For these apps to work then, trust needs to be won first. Nevertheless, trust itself isn’t enough – people need to put in the work to get better. This requires consistency and the right amount of motivation to do so.

Do people use mental mhealth apps with consistency? Maybe “not”.

Consistency is key for progress. The problem is: keeping users motivated and consistent while being tied up to their homes, forced into quarantine and limited to zero family reunions or social activities is not a piece of cake. To keep them going, you need them to want to engage with your app, just like they would when choosing to play a video game: because it is fun, not seen as an obligation, and it might even fill them with motivation and a positive mindset… 

So what if winning over mental health could become as entertaining as playing a video game? 

Encouraging consistency in using mental mhealth applications through gamification has become a trend among digital health innovators. 

“Games with purpose”: Embedding gamification into mental health applications

Gamification is used as a tool for influencing behavior modification in many health applications. 

Due to the game elements introduced in the app, users are enticed to be more engaged in their own recovery, which makes it a formidable tool against mental health disorders. When used in this context, it can further help the users develop healthy habits that can reduce stress, anxiety or depression, such as exercising regularly or following treatment instructions.

Video game makers have banded together to promote gaming as a healthy means of physical distancing and social connection amid the coronavirus pandemic. 

One of the reasons it has become so popular in mental mhealth apps is that smartphones are excellent delivery vehicles for gamification in healthcare: easy collection of precious personal data like geolocation, inbuilt accelerometers to monitor activity and external sensors that can capture vital signs such as heart rate and blood pressure are just a few to mention.

Hence, not surprisingly, while the pandemic has inflicted income declines on many industries, video games and digital health are not among them. Nowadays, combining the two might even be the best shape for providing help to the ones who need it the most, “stay at home”-compliant. So is it checkmate? Maybe not. One thing is for sure, embedding gamification in mental mhealth apps does not come that easy.

(spoiler alert: privacy is calling!)

Legal aspects and ethical considerations of using gamification in mental health applications

If mental mhealth apps may feel like a funny game to the users, for the one who designs it, the app is nonetheless a digital therapeutic and personal data collecting tool which needs to comply with a number of regulatory requirements.

For personal data collection, privacy and data protection regulations such as the GDPR, CCPA or any relevant national Data Protection Act (DPA) depending on the business and users locations will have to be addressed. As regards to health data, more specific requirements may have to be added to the list, like the HDS Certification required for health data hosting in France. And if the app is recognized as a medical grade solution within the EU, the new EU MDR might even come into play. On a brighter note, if targeting the german market, you might also consider applying for your app to be prescribed as a treatment and reimbursed by insurance companies. 

Parallel to this, the “influencing the behavior of your users”-part of gamification is not to be taken lightly. Alongside the legal aspects cited above, ethical considerations should be given:

1. Design for Trust:
   • It’s simple: if your users don’t trust you, they won’t provide you with their most sensitive, personal information about their mental health and state. Neither will they feel comfortable enough to use your app with consistency. You need trust for your app to work, so build your app around it – design it for trust.
   • It is not about turning your dev team into the new lawyers to be. But embedding privacy in all aspects of your mental mhealth app so it is trustworthy, lawful, and so that your users know what it is done with their data at every step of the way.
   • Little tip about that: enhancing trust requires rethinking consent.

• Avoid Dark Patterns, unless For Good: 

1. • Be mindful of the impact you have on users’ choices and their behaviour. While it is one thing to motivate your users through games and a user-friendly interface, it is another to get consent over addiction. Even through games, rightfully ask for consent and don’t let the prospect of a quick profit blind you. 
   • Alas, recent studies show that despite the recent upsurge in privacy and data protection regulations (GDPR, CCPA, PIPEDA…), companies still have a hard time going against their own business interests. So is it game over?
   • Maybe not! Take it to the next level: use Dark Patterns for Good.

• Digital Ethics

1. • Respect the moral principles – don’t take the game too far. While gamification can help, it can also have devastating impacts on users, such as inducing depression and crushing attention span. Be careful not to get carried away while “playing the game” and rely on digital ethics to build “games with purpose”.
   • Establish norms dedicated to ensure that the autonomy and dignity of users is respected. It is not all on your development team to understand what “ethics” and “privacy” means technically. Provide them with the tools to implement it “rightly”.
   • Lastly, allow your users to shape the debate and make informed choices.

#tip: Walk the talk and keep on your promises to build long-term engagement.

Play hard, play fair. Respect the rules with Pryv

Stay focused on your core expertise and value proposition and let us turn compliance into your competitive advantage.

Pryv.io is designed to facilitate developers creating privacy-centric digital health applications. Our Swiss-made Personal Data & Privacy Management Software is a ready-to-use middleware specifically designed for personal data and consent management. It comes with must-have consent and auditing tools to keep you compliant with existing and forthcoming regulations.

Our ultimate purpose is to remove barriers to data-driven healthcare innovation by helping digital health innovators rigorously manage personal data and build effective, lawful, patient-centric applications respectful of privacy and seamless digital experiences, faster, at a lower cost and right the first time.

Yours,

Stephanie & Evelina

Additional sources:

• https://mental.jmir.org/2019/6/e13717/
• https://www.businessinsider.fr/us/mental-health-apps-superbetter-happify-gamification-techniques-2019-10
• https://uxdesign.cc/the-benefits-of-gamification-for-mental-health-656f9e4cbcce

The post Level up: light on the legal and ethical aspects of using gamification in mental mhealth apps appeared first on Pryv.

In a world awash with data, investing in personal data-fueled businesses is exponentially growing. Digital Health, Fintech, Insurtech companies that are providing behaviour-based services and solutions are just a few that are trending among them. Prior to investing, however, investors need to know that these enterprises are worth the risk. In the context of personal data-fueled businesses, this means ensuring that their portfolio companies will not hit the wall due to poor data management and misuse of the data. 

Beyond the market-product fit. Details that matter.

Investors focus their attention on verifying the product-market fit and rightly so. Equally they look at the power of innovation, team execution capacity and specific technology components, such as AI to unlock the data capacity. However, (excluding those specialized in PrivacyTech, for example), verifying the scalability in managing data and privacy rightly is rarely on the top of investors’ minds.

Still, a company’s ability to properly manage its data can tell you a lot about its future. And while you are not expected to become the new privacy experts in town, evaluating certain data management criteria should help you ensure that these companies are managing the personal data they collect rightly, compliantly to relevant privacy regulations.

Asking the right questions to get the right answers:

You are only 3 Questions away to de-risk when investing in personal data-fueled businesses.

Checklist:

#1 Does the company embed a privacy-first approach in the company mind-set and product design? 

Reflecting the situation: the GDPR, CCPA and numerous changes that are being made into existing data protection regulations are a sign that most companies still are behind when it comes to embedding privacy into their digital applications.

Alongside the rising concerns around companies’ misuse of the data, the current shift in users’ tolerance with regard to the disrespect for their privacy needs to be addressed. In a “user-first” world, lacking trust results in poor business offerings, limited access and less data sharing.

No valuable data for a data-fueled business means no return in investment for an investor.

#2 Does the company master its personal data lifecycle: from collection, structure, storage, sharing and deletion?

Mastering the personal data lifecycle is what allows companies to have a proper oversight of what is happening within their organization in terms of data. For a data-driven enterprise, this is today an absolute necessity; first in regard to compliance, but also for everything else:

• Does the organization precisely understand what EXACT VALUE the collected data already brings to the organization so that they can build an efficient data monetization strategy?
• Does their system have interoperability capabilities to allow easy integration and manage diverse data-sets? Can it SCALE over time?

• Do they properly address all the current regulatory requirements? Are they ready to ADAPT to forthcoming changes?

Before investing, be sure to ask your prospective companies these few questions to ensure that they master how the personal data they collect is managed throughout their organization.

Usually, it is a good indicator that they are ready to scale overtime and thrive in the “Techs”-era.

#3 Does their technology allow for privacy-preserving globalization?

Today, legal interoperability is nothing less but a necessity to scale up any data-driven business.

Yet with the multiplication of privacy laws and related obligations as regards to data residency, growth in user base and new partnerships that imply for the data to be transferred somewhere new are only a few among the multiple scenarios that make it particularly difficult for a data privacy unconscious business to adapt afterwards.

A privacy-preserving globalization approach will help ensure that business growth opportunities won’t turn into an issue, but a success.

Why is privacy important ?

Nowadays, privacy is not about compliance only. Privacy is about data ethics, business values, and how much trust you can put into a company that collects and processes personal data.

Investment is(n’t) blind.

Like in love, a long-lasting relationship does not rely on first-sight, but trust. As you probably wouldn’t marry someone that you don’t trust, we bet you wouldn’t want to invest in a business you have doubts about.

In the same logic, when investing in a data-fueled business, better ask yourself before moving further: Would you be the one to trust this business with your family personal data?

We hope the checklist above will help you make the right choices for profitable investments.

Opt-in with Pryv

• Is any of your portfolio companies struggling to meet new data protection requirements or embed privacy into their digital solutions?
• Do you want to ensure that the companies you perform due-diligence on will not fail on managing their data rightly? Can their business scale over time and geographies?
• Do you consider investing in a technology which does scale across industries and regulations?

Pryv is a Swiss-based company, which developed and commercialized a personal data management solution. Pryv.io is specifically designed to ensure that personal data-fueled businesses can meet privacy and data protection regulatory requirements at a global scale. Since 2015, we help companies achieve GDPR and global data compliance, so that they can turn their compliance investments into a competitive advantage. Privacy-first.

Yours,
Stephanie & Evelina

Sources:

• https://medium.com/@michaeltefula/the-evolution-of-privacy-tech-611dc3f1a79f
• https://iapp.org/news/a/venture-capitalists-increasingly-investing-in-privacy-tech/

Image Credentials: christine-roy-ir5MHI6rPg0-unsplash

The post Must-have checklist when investing in personal data-fueled businesses appeared first on Pryv.

Lausanne, Switzerland / Gosselies, Belgium – October, 2020 The Swiss leading provider of privacy and personal data management software, Pryv, was selected by The European Heart Rhythm Association (EHRA) Inventor Award winner of 2017, the Belgium provider of daily home cardiac monitoring solution, HeartKinetics, to embed granular patient consent management and ensure data privacy compliance with existing and forthcoming regulations.

Being one of the companies incubated at ESA BIC Belgium,  based on over 10 years of research on astronaut cardiac function and its deconditioning in microgravity, HeartKinetics drives a real change for more than 121 million people living with cardiovascular disease (CVD) by turning frequent hospital visits for cardiac monitoring into a thing of the past. Instead, thanks to the advances made in the smartphone motion sensors and over 10 years of space research, patients can be diagnosed quickly or monitored remotely when they are discharged from the hospital. OKCARDIO in particular provides over six vitals parameters including breathing rate, heart rate and heart rate variability as well as exclusive cardiac strength and kinetic energy as signs of the mechanical and hemodynamic function.

“For the cardiologist, it is essential to assess both the heart’s rhythm function, and the mechanical function, which is usually done with echocardiography and lengthy examinations. Although there are many wearables for rhythm assessment, there is no such solution for the mechanical function assessment of the heart. Being able to provide a complete overview of the cardiac function with a simple smartphone is ground-breaking. Using Pryv.io technology, we can ingest different types of high frequency data streams concurrently and efficiently, without compromising on privacy and security.“ – says Pierre-François Migeotte, CEO at HeartKinetics.

HeartKinetics presents two solutions, the OKCARDIO^TM smartphone app that measures myocardial activity through the smartphone’s motion sensors, accelerometers and gyroscopes, which, when placed on the chest, can record myocardial contraction efforts and rhythm. The second one, “the KINO^TM” portable device, is a medical device made of two units, one of which is placed on the chest and the other on the lower back. After an initial calibration by a cardiologist, patients can take measurements at home in less than two minutes and transmit them for diagnosis via a smartphone or tablet. This provides an accurate assessment of both mechanical and electrical myocardial functions, together with hemodynamic parameters.  Based on the patient’s consent, captured and managed by Pryv.io technology,  KINO can frequently share information about a patient’s cardiac health status with their healthcare teams  which is essential for the management of heart failure.

“People living with cardiovascular disease have been among those affected the most during the pandemic. It became clear that there is an urgent need to bring remote monitoring solutions for performing cardiac function tests at home. HeartKinetics addresses such a need with an easy-to-use, breakthrough, scientific-proven technology, already tested and validated, that makes remote heart monitoring possible in a quick and efficient way, from the comfort of the patient’s home. In addition, patients can easily communicate with their physicians and share their data confidently among medical teams with full respect of the data privacy.” says Pierre-Mikael Legris, CEO at Pryv SA.

Preserving privacy in remote health is not a miracle, but the way to be: Pryv.io’s privacy by design technology provides a robust, secure and consent-based backend solution that is designed to prove this. Moreover, the Pryv and HeartKinetics collaboration confirms that it is possible to empower doctors and patients with a deep respect for the confidentiality of the data.

The combination of HeartKinetics health innovation and Pryv.io privacy technology brings light to a critical issue in a time of emerging need. It provides a sustainable, pandemic-proof healthcare solution that is aligned with stringent data privacy requirements.

The KINO device has already been used in clinical trials in the Netherlands Germany and Belgium. OKCARDIO is in its final stage of clinical validations and will be available in 2021.

Learn more about the Privacy-Preserving Home Cardiac Monitoring Solution by visiting www.heartkinetics.com & www.okcardio.com

About HeartKinetics

HeartKinetics builds the cardiac remote monitoring solutions for the smart hospitals of the future. Based on motion sensors our solutions deliver parameters that would usually require an echocardiography. With OKCARDIO and KINO, the patients data are instantly under the eyes of their specialist who can confidently base their diagnostic on objective and proven clinical data. For more information, please visit www.heartkinetics.com & www.okcardio.com

About Pryv

Pryv makes essential software for data-driven healthcare innovation. Our purpose-built middleware helps organizations manage personal data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. For more information, please visit pryv.gihub.io/www

The post HeartKinetics, the daily home cardiac monitoring solution, chose Pryv.io privacy middleware to manage patients data and consent, rightfully. appeared first on Pryv.

Lausanne, Switzerland – October 6^th, 2020

Two leading Swiss providers of privacy and security solutions, Pryv and CYSEC, announce a strategic collaboration focused on integrating their products: the personal data & consent management middleware Pryv.io and the confidential computing solution ARCA from CYSEC. The two Swiss trust-tech companies are jointly pursuing strategic opportunities as part of their growth strategies.

Businesses operating in highly regulated markets such as healthcare, insurtech, mobility and fintech collect, use, and store sensitive personal data at scale. They must therefore adopt the highest privacy and security standards to ensure that data remains protected throughout the full lifecycle and across all three states of data: data at rest, in transit and in use. The need for secure data management has spawned a new era of data protection and privacy regulation and practices including: GDPR; Swiss DPA; CCPA, PIPEDA. And more stringent regulation will follow.

Organizations face regulatory constraints at many stages of software design and must make decisions on how best to manage access control rights, provide data auditing capabilities and store / host data.  As more organisations and entire industries embrace the collection of personal data and its processing, they too will become subject to highly stringent regulations.

While the collection and use of personal data has become increasingly mainstream, only few organisations have invested in reliable data management and storage solutions that provide the necessary security and privacy. Most organisations remain without protection. The risk is not only a potential fine of 20M EUR or more, but also losing the trust of users. Once lost, user trust and an organisations reputation are very hard to regain. To avoid this, it is imperative to work with the right privacy and security tools.

The Pryv.io Personal Data & Privacy Management Software allows businesses to build digital solutions that can collect, store, share and rightfully use personal data. It comes with must-have consent and auditing tools to keep the clients compliant with existing and forthcoming regulations.

The ARCA solution leverages certified hardware to secure data in use, enabling sensitive data to be processed inside a trusted execution environment. In this way, data can be processed without exposing it to the rest of the system, reducing exposure of sensitive data and providing greater control and transparency for users. Its main advantage is the ease of integration as it is compatible with modern virtualization tools that software developers use, including Docker, Kubernetes, VMWare. The solution can be deployed in centralized, decentralized and distributed architectures.

Pierre-Mikael Legris, CEO at Pryv SA said: “By combining ARCA and Pryv.io, companies will blend best of breed security and privacy- by-design technologies for their backend and enhance trust for their customers.”

Florian Wiedmann, Secure Analytics Manager at CYSEC commented: “Organisations looking to comply with increasingly stringent data regulation require a one-stop solution for all their data security and management needs. Teaming up with Pryv will allow us to achieve this goal: A solution that offers both security and critical data management tools to allow organisations to achieve compliance easily.”

Trust is critical for companies that manage personal data. Combining ARCA’s security and Pryv.io’s privacy by design technology provide a robust, secure and consent-based backend to achieve trust. The integration of Pryv.io and ARCA provides businesses with an easy to deploy solution to collect, structure, share, use and store personal and sensitive data without compromising on security and compliance. ARCA and Pryv.io are further integrated with TAK by Build38.

About Pryv

Pryv makes essential software for data-driven healthcare innovation. Our purpose-built middleware helps organizations manage personal data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. For more information, please visit pryv.gihub.io/www

About CYSEC

CYSEC SA is a cybersecurity company based at the EPFL Innovation Park in Lausanne, Switzerland, whose mission is to shorten the time-to-market of innovative services by facilitating their integration into a secured IT environment. To achieve its mission, CYSEC developed a general-purpose security platform called ARCA able to store data and execute applications in a Trusted Environment. By lowering down the barriers to protect data and software, CYSEC enables its customers to benefit from a whole new level of flexibility and agility which is a game-changer today considering the fast-pace at which security and business requirements evolve. CYSEC focuses on the provision of its cybersecurity solutions in four vertical sectors, namely financial services, IoT, space and telecoms. For more information, please visit www.cysec.systems

  Media Contacts

CYSEC SA

Florian Wiedmann

Secure Analytics Manager

florian.wiedmann@cysec.systems

Pryv SA

Evelina Georgieva

CBDO & Co-founder

evelina@pryv.com

The post Pryv and CYSEC launch an integrated solution for collection and confidential computing of personal data at scale appeared first on Pryv.

Once upon a time we used to think of banking as private safes and white collars. Today, it is certainly one of the most promising areas for data-driven innovation. Each time a user pays online, it leaves behind a digital trail of information, allowing for infinite data-fueled possibilities. Yet just like banknotes, personal financial data needs to be kept safely. This means in this case: in compliance with the GDPR, Swiss DPA or any other relevant data protection regulation. 

Open Banking: Mastering privacy & consent  to unlock the personal data superpower

The growth of personal data usage is exponential and affects almost any industry. On one side of this growth, there are the users who keep calling for more on-click personalised offerings and “fluidity” of data transfer. On the other, businesses that are striving to deliver on these demands in the best possible way. Some of these businesses, however, are just kicking off in the personal data economy services accessing. This has been core for the banks and financial industries.

Banks online & payments: guardians of trust

While the pandemic casted a harsh light on the notion of personal data collection and privacy respect, it also further strengthened the boost towards contactless and online paying services. Unlike other industries operating with personal data, the banking industry is fortunate to be one step ahead when it comes to trust: people trust banks and other financial entities to safeguard their personal data more than other organizations. Perhaps for this reason, digital banks and mobile financial applications have been growing like weeds in the past few years; trust being the “magic” seed of their super-fast expansion.

« Bank 4.0: banking everywhere. Never at a bank »

As banking services are being digitized, paying cash is becoming a thing of the past. Twint, Revolut and other “one-click” solutions are becoming the new way to pay for anything, anywhere. And online banking apps are the new go-to for managing bank accounts anytime, “stay home”-compliant and safe. So, if banks were long seen as closed physical places with thick walls and locked doors, they are now becoming prime actors of the rising personal data economy. A rise reinforced by the recent introduction of Open Banking: a practice that provides third-party service providers open access to consumer banking transactions and financial data through the use of application programming interfaces (APIs).

Open Banking Poker Face: Superhero or Supervillain?

Open banking introduces a new paradigm that opens up many business opportunities. Whereas initially seen as a way to enable exchanges between financial institutions, it is now spreading faster and even beyond expectations. Unforeseen personal data offerings in a cross-industry corporation arise indeed when personal and financial data is derived and aggregated. And in a world where everything can be bought a click away, derived applications are endless. 

Applications, “Sur-mesure”.

Just to mention a few, service providers already suggest personalized offerings based on correlating financial and personal data, like targeted budgets for monthly shopping, savings and loans. Thanks to the data collected through open banking, the app can be made perfect for any user: depending on the stage of your life whether you are a student, a parent, buying property or planning retirement, it will provide you with an offer which suits you best.

Privacy-first (un)locks Open Banking

Still, if Open banking is great for business, it is also referred to as a nightmare when it comes to privacy. Especially, the system raises questions as regards to the privacy of the users whose data is being shared: do they understand what their data is being used for? Are they given the opportunity to give explicit consent as required by the GDPR? To ensure that open banking will benefit the users and not foster discrimination, strong safeguards have to be put in place.

Solution: Beyond secrecy, use Pryv.io personal data and consent management solution to enhance your users privacy.

“Personal data aggregation, sharing and processing should be as effective, secure and trustworthy as online banking.” – Pryv

If one could argue that not sharing any data would be the best solution to ensure users privacy, we beg to disagree: Privacy doesn’t have to be only secrecy. At Pryv, we envision a world where privacy is the ability to share personal data with awareness, trust and control.

“Giving explicit consent to collect and share personal data has per core requirement that users understand which data we are talking about. Trust comes with the ability to check the content of these data and the exchanges between all parties. Like banks that provide detailed reports of all transactions in time, classified in bank accounts” – Pierre-Mikael Legris, CEO of Pryv

Enhancing trust requires rethinking consent. In this new paradigm, privacy is not a compliance tick box but an opportunity to break data silos, differentiate products and services, and attract end-users with trust, transparency and empowerment.

“Pryv.io data model provides all data in “time series” contextualised and classified in streams. It is designed to provide the same readability and transparency as your bank report. So anyone could make decisions and check its execution with a minimum of effort.”

Beat the “get-user-consent” fear: start managing your users’ data exactly as the bank manages your money! Learn more about how Pryv.io can help you win users’ trust by collecting and using their personal data rightly.

Yours,
Stephanie & Evelina

Additional Sources:

• https://fintechnews.ch/open-banking/open-banking-in-switzerland-an-overview/32199/
• https://www.finextra.com/blogposting/19282/the-value-that-open-banking-brings-to-each-market-player
• https://medium.com/@nordigen/5-future-open-banking-use-cases-e5168c233bff
• https://tarabutgateway.com/open-banking-use-cases-beyond-banking/
• https://www.linkedin.com/pulse/data-governance-what-truly-means-manage-asset-julien-tagnon

The post Open Banking: Mastering privacy & consent  to unlock the personal data superpower appeared first on Pryv.

Privacy and data monetization are often seen as two antagonistic concepts. While the privacy-respect represents something that costs time, resources and money, the data monetization on the contrary, is what allows you to bring money in. Thus, when thinking about a successful strategy for bringing economic value to personal data, most companies only think of this data as an asset, and tend to forget about their responsibility.

Yet, with regards to privacy and data protection regulations, personal data is certainly more a company’s liability: a duty to comply with a large number of obligations. But what if you could turn these obligations into an opportunity for your company?

Challenges of rightfully monetizing personal data

Data Monetization is a top priority for any company who makes it its business to collect personal data – if you want to keep your business afloat, you have to generate money. That’s clear.

Yet, at an age dominated by the freeware business model, thinking of a way to bring economic value to this data while respecting users’ privacy is a real challenge, many would say: how to motivate your users to pay for a service they can have for free elsewhere? Or if free, how to make profits without (unethically) selling their personal data?

If it became obvious that selling raw personal data is a very profitable business, there are actually a lot of other ways for companies to monetize their data.

First, you can use it to reduce your costs and enhance your overall business efficiency. Second, you can use it to keep generating more money: not a surprise, but how to do that with respect to users’ privacy rights? Usually, it is there that the conflict between money and privacy arises.

Using Data Privacy to enhance Data Monetization

The thing is, reducing data to money will often blind you about its infinite possibilities. In fact, chances are: starting by addressing data privacy issues will even help you enhance your data monetization strategy. Why is that?

As a first step, you need to realize that just like money, data continuously flows in and out of organisations. And how do you make more money with your actual money? By selling more of your products and services? Sure. But mostly, by having a clear picture of how money runs into your organisation and acting smartly on it.

In a similar way, having a clear picture of your data economy will allow you to be smart about it. You might think of it as an extra task that you don’t want to put your efforts into. But actually, it will demand nothing more that you already have to do: as sorting your personal data lifecycle is the core part of building your data privacy strategy (which you will have to do to comply with data protection regulations like GDPR).

So, just like you can turn your GDPR consent-requirements into an opportunity to build trust with your customers and grow your business, you can turn your data privacy obligations as an opportunity to find new ways to efficiently monetize the personal data you collect, enabling you to solve two problems at once.

So far, so good. But how to build an efficient privacy-preserving data management solution that allows you to meet both your privacy requirements and data monetization goals?

Here is our solution: Pryv.io – a ready-to-use Personal Data Management Platform as foundation to build a compliant, scalable and successful business model

Pryv.io is a personal data management solution that allows companies to rightfully collect, store, share and use personal and health data. We make personal data aggregation, sharing and processing as effective, secure and trustworthy as online banking.

Built to help companies achieve GDPR and HIPPA compliance, Pryv’s solution addresses all the data privacy requirements that you need to stay ahead of existing and forthcoming regulations, but also provides you with a data model precisely designed to aggregate and distribute multiple sources of information.

As we understand the value of combining a robust amount of data and diverse datasets is essential for providing personalized offerings, we wanted to provide companies with a way to do it efficiently and compliantly: we thus designed a data structure that is easy to understand and work with. Data pooling and data aggregation are among the best Pryv.io’s capabilities.

Our solution is customer- and data-centric, which allows any company or startup to have a clear understanding of its data economy – Everything you need to build a strong and ethical data monetization strategy, while being compliant to the most stringent regulations.

The best part? You can already install it, today, for free: Check it out

Open Pryv.io is available in open-source: free, full production, easy-to-install.

Stephanie & Evelina @ Pryv

The post Data Monetization: how to profit from rightfully managing personal data appeared first on Pryv.

TLM Solutions and Pryv partner in Canada to optimize personal data management in new eHealth applications: A ready-to-use solution to meet international privacy standards and a team of recognized data privacy experts fostering healthcare innovation.

The post TLM Solutions and Pryv partner in Canada to optimize personal data management appeared first on Pryv.

A ready-to-use data management solution to achieve GDPR compliance and meet health data hosting requirements. 
Companies willing to collect and use personal health data can now benefit from a complete, ready-to-use, and scalable solution, offered by Euris Health Cloud® (health data hosting) and Pryv (personal data and privacy compliance middleware). In Europe, the solution combines a certified HDS (*) hosting offer for security and a personal healthcare data management service for privacy, allowing e-health actors to rigorously manage personal health data and quickly create applications that respect the rights of the patient at an attractive cost.

”Contrary to what companies may believe, the HDS Certification of their hosting provider in no way implies their compliance with the GDPR. All it tells them is that their host offers sufficient data protection guarantees.” says Pierre-Mikael Legris, CEO at Pryv “The complementarity of HDS hosting and GDPR compliance solutions is perfectly illustrated by our partnership with Euris.”

 

“Combining our expertise with Pryv knowledge and Pryv.io capabilities, we provide a unique and proven off-the-shelf solution that allows companies to achieve an optimal data management and protection solution globally through a new bundle offer for startups and innovative e-health projects.“ says Pedro Lucas, CEO at Euris Health Cloud®.

With the offerings Cloud Santé® PRIVACY and Cloud Santé® PRIVACY STARTUP by Euris and Pryv, companies operating in Europe can now meet both French HDS and EU GDPR requirements with no expertise required on their part, allowing them to focus on their core business and increase user engagement through trust and transparency.

About Euris Health Cloud®: www.euris.com

Euris Health Cloud® is a connected healthcare operator, specialized in the hosting of healthcare data. Euris Health Cloud® provides a global hosting infrastructure for personal health data, in compliance with local regulations: EU (HDS: 2018 &ISO 27001 2013), US (HIPAA), China (CSL).

Thanks to a unique marketplace model, Euris Health Cloud® also offers a complete range of interoperable services and solutions, facilitating the deployment of e-health projects: strong authentication, drive, archiving, backup, anonymization, Big Data, Business Intelligence, IoT, telemedicine, CRM, PRM and Healthcare Data Warehouse.

About Pryv: pryv.gihub.io/www

Pryv.io is an extensible personal data lifecycle management platform specifically engineered to empower developers to rapidly create and scale breakthrough GDPR and HIPAA compliant products, services, and experiences. The software has been developed to accommodate rapid integration. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management, and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing the most stringent data protection requirements.

(*) Certified HDS: « Hébergement de Données de Santé » (French Health Data Hosting certification based on ISO 27001 standard and GDPR regulation)

The post Euris and Pryv simplify personal data management: A ready-to-use solution to meet GDPR and Health Data Hosting requirements. appeared first on Pryv.

In this article, we will outline the benefits of using open source software to support your development and how Open Pryv.io can support your innovation at no cost.

Open-source: accessible to all.

Open-source refers to software solutions whose code is freely available so that everyone can access it. For companies, it means that the code is accessible for their developers, so they can verify how it works and make proof-of-concepts without having to pay for anything.

Especially in the health sector, they are very popular as they tend to solve a lot of recurrent issues, like reducing development costs, interoperability and transparency.

(1)Transparency as a principle.

Today, personal data and digital health apps are becoming an indispensable tool of our society. Yet, because they tend to rely on the important collection of personal and health sensitive information, the concerns around their respect to privacy are at preeminent importance. So how to address these concerns efficiently?

By relying on Open Source solutions, you show that you are not afraid to reveal how you manage the personal and health data you collect, and send a strong message of inclusivity which can truly make a difference as regards to your users’ engagement.

(2) Fast, agile and reliable, at no cost.

If Open Source is the best solution to achieve transparency, it is also the best solution for startups and innovators who want to be fast, confident and build a compliant, scalable digital health app at a costless price.

Yes, costless. This is certainly one of the primary benefits of relying on Open Source solutions: it costs you nothing. Which is extremely interesting for small businesses who might simply not have the resources to buy off-the-shelf solutions, but not only.

Even if having the resources, you might be interested to make a proof-of-concept before going any further with a spotted solution. And this is definitely another primary benefit of Open Source solution: public accessibility.

(3) Community Validation: Trust-by-design

You are not alone.
It is not only a small portion of people who have access to the code, but literally everyone. Which makes it trust-by-design and harder to corrupt as it relies on mutual surveillance and reviews from a very diversified community. But above all, it is an undeniable pledge of confidence for users in general.

(4) No dependencies.

Another great advantage of using an open source solution is that you have no dependencies with regards to the company which provides you with the solution. You are not tied to some proprietary code as you could be by using pure proprietary software.

This is definitely a game changer for companies who always wanted to rely on existing off-the-shelf solutions to focus on their core business but couldn’t risk to be tied to the hazards or change-of-mind of another business.

(5) Forward-looking: open possibilities.

Last but not least, open source is also one of the best strategies to ensure maintaining scalability and flexibility within your organization. With an open code, you will be less exposed to the risk of ending up with obsolete capabilities. Not to mention the fact that it will also encourage open collaboration between your development teams and providers, which can be the fast-tracker you were looking for for creativity and innovation.

Check out how you can build a privacy-by-design digital health app with Open Pryv.io: a free, full production, easy-to-install open-source solution for the collection and management of sensitive personal and health data: https://github.com/pryv/open-pryv.io.

Personal data and consent management, done rightly.

The post Open Pryv.io: Fast, agile and reliable personal data & consent management solution, at no cost appeared first on Pryv.

Lausanne, Switzerland, June 9th, 2020 — Today, Pryv SA, the leading Swiss provider of personal data and privacy management software announced the open-source release of Open Pryv.io: a free and scalable personal data lifecycle management platform specifically engineered to empower developers to rapidly create and scale breakthrough, GDPR, and privacy compliant products, services, and experiences.

As developer productivity has become a competitive necessity, the ready-to-use Open Pryv.io is marking a turning point to de-complexify the development of personal data and digital health applications.

Data pooling, data aggregation, consent management, and data interoperability are among the Open Pryv.io’s capabilities that are raising the bar for delivering a reliable solution for collecting and managing heterogeneous sets of real-world personal data with full respect to privacy.

“Releasing our core software in open-source today is a natural move for us. From day one, Pryv.io was built to be open-sourced” says Pierre-Mikael Legris, CEO and co-founder of Pryv SA. ”In fact, our source code has always been open for our clients. By releasing Open Pryv.io, we provide any company with a tool allowing them to address the enhanced citizen’s right, which sends a strong message of transparency and inclusivity”.

Fostering faster innovation and less duplication of effort are also among the main drivers of Open Pryv.io’s release. Nowadays developers value using open-source instead of redeveloping available code. Integrating Pryv.io open components will allow developers to free them up to work on what is unique in their products and add privacy-by-design to their value proposition.

“Open sourcing our code is doing the right thing – for the community, for our clients, and for Pryv. We should have done it much earlier.” adds Simon Goumaz, Co-Founder and Board Member at Pryv SA.

The Open Pryv.io release takes place at a time when the pandemic disruption has cast a harsh light on the notion of personal data collection and privacy respect. As governments have been lifting data protection restrictions in an attempt to ease access to personal data to protect public health, the release of Open Pryv.io shows that there is a way to encourage personal data collection being done right. Open Pryv.io urges to build a world where privacy is the norm – not the exception as it is today.

“Privacy doesn’t have to be only secrecy. We envision a world where privacy is the ability to share your data with awareness and control. For years now, we prove that respecting one’s privacy and having access to their data are not contradictory. The more transparent you are, the strongest relationships you will build with your users” says Evelina Georgieva, Co-Founder and CBDO at Pryv SA. “No more excuses: the Open Pryv.io offers developers a strong foundation to ensure that the personal data they collect are rightfully managed from day 1.”

Alongside this new release, which offers essential features of the Pryv.io software following an open-core model, Pryv continues executing its growth strategy by licensing the enterprise-class version to projects that require high scalability, compliance documentation and dedicated support.

About Pryv

Founded in 2012, Pryv makes health personal data processing as secure and trustworthy as online banking. We help organizations manage personal data from creation through use and sharing,

Our Swiss-made Personal Data & Privacy Management Software- Pryv.io is a solid foundation on which you build your own personal data and digital health solutions. The software has been developed to accommodate rapid integration. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing the most stringent data protection requirements.

The post Pryv SA releases an Open-Source Solution for Personal Data & Privacy Management appeared first on Pryv.

It’s not news: from two years already, if you’re a company operating with EU citizens personal data, you have to comply with the GDPR (General Data Protection Regulation). Effective since 25 May 2018, the regulation sets out a number of legal obligations to be met in terms of privacy requirements and generous fines to be paid for those who don’t play by its rules. Yet in spite of its not-so newness, a lot of questions are still arising when it comes to GDPR compliance: how to achieve it? Where to start? How to leverage its requirements into a competitive advantage?

 Master the GDPR Compliance Checklist with Pryv

While lots of companies see the GDPR as a boring legal conundrum to solve, it is actually one of the best frameworks you can use to flourish and scale up your business. That is of course, assuming you do it smartly; we bet you would rather use your resources to enhance your application than have them stuck finding a way to answer on the user’s rights on their data: how to execute their consent, where to store their data… getting a copy of the data ready, process to delete it? At the end of this article, you’ll be the one ready to master your GDPR compliance and know how Pryv.io’s capabilities can help you thrive in the blooming personal data economy.

GDPR 101: a checklist to achieve compliance

To make it easier for companies to navigate the storm of the GDPR data protection and privacy requirements, the gdpr.eu website provides easy-to-understand, compliance guidance through a variety of digital content aiming at explaining and/or highlighting the specifics of the regulation. Especially, they provide a free, online GDPR Compliance Checklist that businesses can use as a framework to achieve their own compliance. This is exactly where you want to start when asking: “Am I ready for the GDPR?”

Divided in four parts, the checklist sets out a list of 19 things to be checked or done (preferably before going to market!) in order to reduce the risks of regulatory penalties.

The checkups are regrouped by privacy-related “themes”:

1. Lawful basis and transparency
2. Data Security
3. Accountability and governance
4. Privacy rights

In the following, we will show for each of these checkups how you can leverage our technology to achieve GDPR compliance while increasing your business efficiency.

GDPR Compliance Checklist @ glance, with Pryv

Pryv.io is an extensible personal data life-cycle management platform specifically engineered to empower businesses to rapidly create and scale breakthrough, GDPR compliant applications.

A lot of organizations are skeptical about involving a third-party for their privacy – we get it.

So let’s be clear: we don’t access or host any data. All we do is to provide our clients with a ready-to-use, scalable piece of code/software that can be used to rightfully collect, store, share and use personal data. Moreover, you can even choose where you want the data to be stored for each user separately, so it is both safe and compliant with all relevant data residency laws. Pryv.io will then be deployed on the servers and/or infrastructure of your choice. 

Focus on your core business knowledge and let Pryv.io optimize your organization’s resources for a responsible, efficient, and lawful collection, use, sharing and disposal of information.

In addition, you will be able to benefit from Pryv.io’s latest features: webhooks for real-time data notifications, and many others that will help you boost your business’ success!

Still skeptical? Take a look for yourself: because we believe transparency is key when it comes to privacy, our software is also available in Open Source since this summer.

For all other questions or to book a demo, contact us directly at: https://pryv.github.io/www/contact/

Yours,

Pryv Team

The post Master the GDPR Compliance Checklist with Pryv.io appeared first on Pryv.

If traditional clinical trials were already on the spot for a digital upgrade, the pandemic/lockdown situation made it now a top priority for the global healthcare industry. Especially, if researchers want to pursue their studies while keeping participants safe at home, they have to go digital and adopt eConsent.

Yet, what can be easily done when meeting in real life can be difficult to achieve technically. This is especially true for consent. 

Consent under trials

“Informed consent” is the solid basis for any clinical trial. That is, the consent that an investigator must obtain prior to any experiment on a participant. Within the EU, this process is governed by the Clinical Trials Directive, soon to be replaced by the Clinical Trials Regulation (CTR).

According to the Directive, “informed consent” shall be defined as follow: “decision, which must be written, dated and signed, to take part in a clinical trial, taken freely after being duly informed of its nature, significance, implications and risks and appropriately documented, by any person capable of giving consent”. As for the CTR, it provides us with a similar definition: “informed consent means a subject’s free and voluntary expression of his or her willingness to participate in a par­ticular clinical trial, after having been informed of all aspects of the clinical trial that are relevant to the subject’s decision to participate”, and also adds that “informed consent shall be written, dated and signed”.

Thus, in order to enrol participants in a clinical trial, investigators must obtain their consent first, and are obliged by the law to provide them with all relevant information. We certainly all can picture how it would look like when an investigator and a participant meet in real life. The participant will come where the study takes place. Shake hands with the person in charge. See with his eyes how everything happens. And then they will talk. 

At some point, some paperwork will be involved, and all the processes will be documented as it is required by the law. The participant will then be left with the choice to consent or not.

Now how do you implement that virtually? This is where eConsent solutions come in.

eConsent

Electronic consent (eConsent) is the virtual equivalent of consent. So instead of having  people meeting each other in order to exchange information and sign a piece of paper, everything is done remotely. Which is exactly what we need in a time of a pandemic disruption, and also to increase the potential and success of clinical trials in general, as it would open infinite possibilities for real world data collection and worldwide participants recruitments.

eConsent allows patients to continue consenting and enrolling in clinical trials when not being able to present in person, whether due to an isolation, physical condition or geographic location. 

However, contrary to popular belief, eConsent is way more than a “checking a box” option – especially within the context of a clinical trial.

Even virtually, the law applies and obliges investigators to inform the participants, document everything, and so on. But more importantly, if you are looking to enroll participants into a decentralized and remote clinical trial, you will have to build a digital trust. 

Solution: Pryv.io Privacy & eConsent Solution to build trust for your remote clinical trial.

Building a digital trust is the key to unlocking the difficulties of remote recruitment. When running a digital trial, you have to keep in mind that basically, you are asking people that you’ve never met to consent that you experiment on them. That certainly doesn’t bring much confidence.

So be innovative, adopt technology, provide more value. Just because you “have to” go digital doesn’t mean that you can not take this as an opportunity to push back the barriers and overcome the limitations of the current traditional on-site paper-based clinical trials.

Make a call. Use telehealth solutions to meet virtually. Build a virtual path to follow that will put your participants in the same situation that they would be if they would come to meet you.

Now how can we help you? Companies can deploy Pryv.io as a foundation for their digital clinical trials. Our software is specifically engineered to empower CRO and Pharma organizations to design and run decentralized, remote and patient-centric clinical trials.

While you focus on designing the perfect user interface for your patients, we provide you with a data management platform ready to welcome unlimited types of data from unlimited devices. So you can use IoT, medical devices and wearables to capture real-world data at any time, enabling you to unleash new discoveries during your trial.

We don’t access or host any data. You and your participants can even choose in which country you want the data to be stored – our platform is specifically designed to run multi-centric clinical trials at ease. Once stored, the data will be kept per-user, so you can easily show each participant his trial dataset and engage them in the process, sending a strong message of transparency and inclusivity.

Our Pryv.io platform also comes with eConsent and auditing tools so you can rapidly cook-up your own digital informed consent in compliance with CTR and GDPR. Our eConsent mechanism will allow you to keep track of every consent and related data-access per participant, while our audit solution will enable you to document the full process and retrace every access to the data.

Stephanie & Evelina @Pryv.

The post Privacy and eConsent Management for Remote Clinical Trials appeared first on Pryv.

Security with app hardening and privacy-by-design backend are a top priority for Digital Health Providers

Fraud, privacy violations, cyberattacks, unauthorized data collection, outlaw processing, and hacking of connected medical devices and mobile applications are just a few of the threats arising from the digitalization of the healthcare industry. A hack, that can be disastrous for individuals, is just as harmful for businesses, who will face regulatory fines and damage to their reputation. Such threats can be minimized by implementing adequate privacy and security measures right from the very start. Protecting digital channels is invaluable on many levels, saves lives and prevents significant financial losses.

“Smartphones and tablets are the primary access point for both our personal and work life, and a valuable target for attackers,” said Dr. Christian Schlaeger, Build38 CEO. “Business agility provided by mobile devices will continue to drive adoption in the mobile health sector, even more now with the announced DiGA initiative of the German government. Build38 and Pryv empower businesses to embrace the productivity benefits of mobile devices while addressing the security and privacy risks.”

“Developing the privacy and security layers of Digital Health applications is a highly demanding task, yet essential to gain users trust and achieve compliance.” said Pierre-Mikael Legris, CEO at Pryv “This partnership is a game changer for digital health innovation. It provides digital health innovators with a rigorously tested off-the-shelf solution, allowing them to easily and rapidly develop trustworthy and scalable products.”

The offering by Pryv and Build38 foster compliance with the most stringent existing and forthcoming data protection and cybersecurity regulations. No dedicated security knowledge or privacy-expertise is required by development teams. Companies can focus on their core competency, while de-risking security and privacy compliance, winning time-to-market and fostering user-engagement through trust and transparency.

About Build38:

Build38 is a global provider of mobile application protection solutions. Its Trusted Application Kit (T.A.K) solution combines AI-platform and strongest app shielding technology which protects B2B and B2C mobile channels from fraud and reduces your compliance risk exposure. It also enables new use cases and opens the market for new digital business models. Build38 protects applications across various industries including automotive, financial, public transport and health care. Build38 is headquartered in Munich with global offices in Barcelona and Singapore.

www.build38.com

About Pryv SA:

Pryv makes health personal data processing as secure and trustworthy as online banking.

Pryv.io is a solid foundation on which you build your own digital health solution, so you can collect, store, share and rightfully use personal data. It comes with must-have consent and auditing tools to keep you compliant with existing and forthcoming regulations. The software has been developed to accommodate rapid integration, allowing you to properly manage your users’ data from day one. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management, and comprehensive auditing capability that radically cut IT risk, development costs and accelerate time-to-benefit while addressing the GDPR and the most stringent data protection requirements.

pryv.gihub.io/www

The post Build38 and Pryv Team Up to Simplify Mobile Security and Privacy for Digital Health Companies appeared first on Pryv.

*This is a living document that will be updated on a regular basis.

GDPR: remaining within the rules.

The European Data Protection Board (EDPB) says that it is possible to adapt to the situation while remaining within the rules.

“Data protection rules (such as GDPR) do not hinder measures taken in the fight against the coronavirus pandemic,” says EDPB chair Andrea Jelinek.

“However, I would like to underline that, even in these exceptional times, the data controller must ensure the protection of the personal data of the data subjects. Therefore, a number of considerations should be taken into account to guarantee the lawful processing of personal data.”

Consent and Data Collection

Data Protection Authorities all agree: only essential information should be collected. 

So, only in case that it’s necessary for public health reasons, public health authorities and employers can process personal data without having the consent of the concerned individuals.

If the concept might be simple in theory, it leaves organisations with a lot of questions and challenges to solve. To provide guidance on the subject, International Law Firm White & Case has set out “an overview of some of the key issues for organisations to consider during this crisis, from an EU data protection compliance perspective”.

Mobile location data

« For the processing of electronic communication data, such as mobile location data, additional rules apply. The national laws implementing the ePrivacy Directive provide for the principle that the location data can only be used by the operator when they are made anonymous, or with the consent of the individuals. » 

« When it is not possible to only process anonymous data, Art. 15 of the ePrivacy Directive enables the member states to introduce legislative measures pursuing national security and public security *. This emergency legislation is possible under the condition that it constitutes a necessary, appropriate and proportionate measure within a democratic society. If such measures are introduced, a Member State is obliged to put in place adequate safeguards, such as granting individuals the right to judicial remedy. »

European Commission’s Recommendation on apps for contact tracing, published on 8 April and setting out the process towards a common EU toolbox for the use of technology and data to combat and exit from the COVID-19 crisis

Andrea Jelinek, Chair of the EDPB, said: “The EDPB welcomes the Commission’s initiative to develop a pan-European and coordinated approach as this will help to ensure the same level of data protection for every European citizen, regardless of where he or she lives.”

Letter concerning the European Commission’s draft Guidance on apps supporting the fight against the COVID-19 pandemic

In its letter, the EDPB specifically addresses the use of apps for the contact tracing and warning functionality, because this is where increased attention must be paid in order to minimise interferences with private life while still allowing data processing with the goal of preserving public health.

MDR: Postponed. 

Parliament adopted the European Commission proposal, allowing the application of the Medical Devices Regulation to be postponed by one year until 26 May 2021.

«This postponement will take the pressure off national authorities, notified bodies, manufacturers and other actors so they can focus fully on urgent priorities related to the coronavirus crisis.

Vice-President for Promoting our European Way of Life, Margaritis Schinas, said: “Shortages or delays in getting key medical devices certified and on the market are not an option right now. The Commission is therefore taking a pragmatic approach and delaying the entry into application of new EU rules on medical devices, so we can have our medical industries pouring all their energy into what we need them to be doing: helping fight the pandemic. This shows once again that the European Union is leaving no stone unturned in our support to national public health systems in their hour of need.”

Sources: https://www.europarl.europa.eu/news/en/press-room/20200415IPR77113/parliament-decides-to-postpone-new-requirements-for-medical-devices

Switzerland: The principles of the Federal Act on Data Protection, must be respected.

The authorities, in cooperation with health institutions, are doing everything possible to stem the rapid spread of the coronavirus. Insofar as private individuals (in particular employers) process personal data to combat the pandemic, the principles set out in Article 4 of the Federal Act on Data Protection must be respected.

Source:

https://www.edoeb.admin.ch/edoeb/en/home/latest-news/aktuell_news.html

France: CNIL Recalls Data Protection Rules in the Context of the COVID-19 Outbreak

The French Data Protection Authority (the “CNIL”) issued guidance which outlines some of the principles relating to personal data processing. 

The Guidance stresses that employers may not implement measures to fight against the coronavirus pandemic that would infringe on employees’ or visitors’ right to privacy, especially by collecting personal health data that would go beyond what is necessary to determine potential exposure to the virus. 

Source: https://www.huntonprivacyblog.com/2020/03/20/cnil-recalls-data-protection-rules-in-the-context-of-the-covid-19-outbreak/

Germany: A solid framework for privacy and health innovation

German Authorities Issue Guidance Related to Coronavirus.

Germany is among a few countries that have already set-up the scene for effective promotion of remote patient monitoring and digital health adoption. Digital Health Innovators can apply for the DiGA “Fast Track” and have their solutions reimbursed and prescribed by physicians. 

« The Health Innovation Hub, established by Germany’s Ministry of Health, published a list of trusted telemedicine services. Most of these are available for free, towards which citizens can turn during the pandemic. » 

Sources:

https://hih-2025.de/here-to-stay-digital-health-in-times-of-covid-19-a-german-deep-dive/

https://www.datenschutz-mv.de/datenschutz/publikationen/Corona/

https://www.insideprivacy.com/covid-19/german-authorities-issue-guidance-related-to-coronavirus/

https://www.bfdi.bund.de/DE/Datenschutz/Themen/Gesundheit_Soziales/GesundheitSozialesArtikel/Datenschutz-in-Corona-Pandemie.html?nn=5217154

https://medicalfuturist.com/how-germany-leveraged-digital-health-to-combat-covid-19/

UK: marks a shift in its privacy policy on patient data collection and usage 

The National Health Service in England has sent out a document that marks a shift in its policy on patient data. It mentions the use of data to understand trends in the spread and impact of the virus and “and the management of patients with or at risk of Covid-19 including: locating, contacting, screening, flagging and monitoring such patients”.

In this regard, the UK Information Commissioner’s Office (ICO) also published “a handy guide to what you need to know about data protection during the pandemic” that specifically addresses the concerns of healthcare organisations and professionals.

Sources: https://www.gov.uk/government/publications/coronavirus-covid-19-notification-of-data-controllers-to-share-information

https://www.bbc.com/news/technology-52135916

Globally: A closer look at privacy updates during pandemic, at a glance

The latest guidance and information from The Global Privacy Assembly (GPA members) and observers on data protection and COVID-19 can be find in the source below:

Source: https://globalprivacyassembly.org/covid19/

The post Privacy and Health Regulation updates during Covid-19: Must-know updates appeared first on Pryv.

#1 What you need to know to successfully scale-up your digital health innovation in Germany

The German Healthcare Market – Overview

With the largest European healthcare system counting 72 million insured citizens, Germany has always been a very attractive market for health actors, not only for internal players, but also globally. However, until now, breaking into the digital health market was legally more challenging than rewarding, making it very difficult for health startups and entrepreneurs to pioneer into the German eHealth scene. It all changes now with the adoption of the Digital Healthcare Act.

The Digital Healthcare Act – What’s new?

The Digital Healthcare Act was adopted in 2019 by the German Parliament and entails the new rules to support digital health innovation in Germany. If the German healthcare system was strong thus far, it was also filled with paperwork and not legally welcoming in regard to digital innovation. The new Act addresses these issues and opens the German healthcare market to a new era of digitization and unlimited possibilities for groundbreaking eHealth solutions.

Starting from January 2020, the Act will bring revolutionary changes to the German Healthcare Community, opening the doors to infinite opportunities for the visionary eye. Among them:

• Full digital transformation of the healthcare system;
• Telemedicine becoming the new normal;
• Doctors prescribing Apps as a Treatment.

Pioneering Health Data – Laws to follow?

Despite the many possibilities that the DHA offers, unleashing the power of digitization over healthcare involves a lot of risks for personal health data and patients. Companies that are taking the leap into pioneering health data will have to comply with several standards and Regulations in order to ensure that patients are safe and data are secured. 

The Regulatory framework on top of your new eHealth Solution will be composed of:

• EU Regulations: mostly GDPR and MDR, ensuring data protection and product safety.
• German Data Protection laws: specifying data protection over GDPR.
• Laws deriving from the DHA itself: like the Patient Data Protection Law that is in motion or the DiGA Ordinance if you were targeting to prescribe a Digital Health App (DiGA).
• Medical Professional Secrecy.

It is worth highlighting that Data Protection Standards within the German healthcare system are extremely strict. Health app providers will have to prove that their systems have been designed with respect to the state-of-the-art data protection and data security requirements.

#2 How to ensure that your Digital Health Innovation gets adopted and reimbursed in Germany

Software as a Treatment – New opportunities?

Among all the changes that the DH Act will bring to the German healthcare system, one that will massively and positively impact eHealth innovators and entrepreneurs is the one that allows doctors to prescribe medical apps. By making Digital Health Apps (“DiGA” in DHA) a treatment, the new Act establishes a right for eHealth Solutions to be prescribed and reimbursed by insurance companies: providing start-ups with the opportunity to re-think and introduce new business models to support their growth.

Your Digital Health Solution – Eligible under DHA?

However, not every digital health application will be eligible to become such a care treatment. Eligibility for insurance reimbursement is tied to strict criteria and eHealth Solutions will have to meet specific requirements in order to be recognized as DiGA under DHA, such as:

• being patient-centric.
• classified as a class I or IIa medical-grade solution under MDR.
• rely on eTech.
• allow for specific medical functionalities as listed in the law.

For more details on the subject, companies shall refer to the DiGA Ordinance (DiGAV).

Insurance Reimbursement – The Fast Track Process

Now to  have their solution prescribed and reimbursed, makers of Digital Health Apps will have to undergo the “Fast Track Process” in order to be listed in the official DiGA directory. Precisely, they will have to apply to the competent authority and show that their products meet specific General Requirements (including those of GDPR and MDR) and will have “positive care effects”, not only for individuals, but also for medicine and the healthcare system itself.

The Fast Track Process: After a 3-months preliminary period for application review, the BfArM (which is the German Authority that reviews for DiGA applications) will approve temporarily (or not) the product for a 1-year testing period, during which the producers will have to demonstrate the “positive care effects” of their solution in order to be definitively listed in the DiGA directory.

What makes this process particularly interesting for digital health startups is that it is indeed very fast and allows for rapid business growth and evolution:

• Requests for listing in the DiGA directory are reviewed in a 3-months approximate period, enabling rapid startup evolution if things go well!
• Pre-listing is allowed during a one year testing period, so that companies have time to prove positive medical efficiency while having their products on the market.
• Price negotiations are also in order if the testing period is proven to be successful.

#3 Be the first among equals: conquer the new German digital Healthcare market in a heartbeat

While the specifics are still in the process of being defined, interested companies can and should already look for eligibility to ensure that they will be the first to benefit among many more to come and compete with. We will never emphasize on this enough: Time matters.

So if you wish for your product to be part of the short-listed portfolio in the beginning of DiGAs era, now is the time to apply and place your solution at the top of German eHealth innovation.

Being first to last – requirements

Despite the easy appearance of the fast-track process, Digital Health innovators will have to work hard to see their Applications accepted (at least temporarily) by the German authorities. Since DiGAs are defined as GDPR and MDR compliant products, meeting the requirements of these regulations will certainly be the first challenges for achieving DiGA-recognition. However, this will only be the top of the iceberg. Producers will also have to strike the right balance between scalability and interoperability to ensure that their Apps thrive in the new German digital era.

German Healthcare 4.0 – issues to address

Thriving in the 4.0 digital era will certainly not be a breeze for health startups and organizations. With an average of 10 visits per year to their physicians, Germany certainly makes a strong case for a digital makeover, but also raises concerns about privacy and security of the german data. Especially at a time when we are still learning that secured systems are far from being the norm in Germany, regardless of severe GDPR fines and regular cyberattacks over the medical industry. 

On top of state-of-the art privacy, security and data protection standards, organizations will have to tackle scalability and interoperability challenges, which might take time to prepare for. The telematics infrastructure of the German healthcare system and the specifics of Gematik’s dedicated computer network should also be addressed. Moreover, data storage and access should be a top priority. Specifically: where to keep the data & how to share it when needed?

Pryv.io – DiGA starting kit

Meeting all these requirements is feasible but can be hard for startups. Running over budget, time and resources.… Re-designing, re-focusing… doing it once again… feeding your migraine, burning your team? 

But just imagine: what if … you were given the luxury to focus on what matters the most to roll-out your key value proposition and innovation, while the entire data lifecycle management of your breakthrough eHealth solution is resolved, in no time?

We’ve got that for you: Pryv is a data management solution for personal and health data. We help healthcare innovators preserve data privacy and rigorously manage personal health data from creation to use, sharing and disposal. Our software accelerates patient-cen

tric innovation and helps significantly reduce time-to-market and the resources required to achieve compliance to Data Protection and Medical-grade Regulations. Specifically, opting for buy vs build will gain you up to 80% time and money. Get your data management solution done right, and fast – at your disposal in less than 5 days.

Now, it is you, racing against the clock: catch that wave and pave the way for a brighter future!

Let us maximize your chances of being the first among equals: look into Pryv.io to boost your way into DiGA official portfolio and conquer the digital world in a heartbeat. 

Book a demo

Stephanie & Evelina

Sources:

https://www.eu-patienten.de/en/behandlung_deutschland/datenschutz/DatenschutzbeiBehandlunginDeutschland.jsp

https://www.jdsupra.com/legalnews/german-regulator-issues-record-fine-for-87518/

https://www.google.ch/amp/s/amp.dw.com/en/sensitive-medical-data-for-13000-germans-was-available-online-for-years/a-50465964

https://www.boxcryptor.com/en/blog/post/healthcare-germany-data-security/

https://research2guidance.com/why-germany-becomes-a-top-country-for-digital-health-solutions/

https://www.emergobyul.com/resources/market-germany

https://www.healthcareitnews.com/news/europe/german-health-minister-jens-spahn-presents-draft-law-patient-data-protection

https://www.mondaq.com/germany/Food-Drugs-Healthcare-Life-Sciences/898780/Germany-Is-Going-To-Specify-Safety-Expectations-For-Reimbursable-Digital-Health-Applications

https://insights.project-a.com/digital-care-act-is-germany-now-ready-for-digitalhealth-2b0f019edf00

https://www.dw.com/en/sensitive-medical-data-for-13000-germans-was-available-online-for-years/a-50465964

www.covingtondigitalhealth.com/2020/02/german-publishes-draft-regulation-on-the-reimbursement-of-digital-health-applications/

Image: pexels.com

The post Conquering the German Market: DiGA “Fast Track” Kit for Digital Health Innovators appeared first on Pryv.

In May 2021, all companies providing healthcare solutions recognized as “medical devices” under the new EU “Medical Devices Regulation” (MDR) will have to comply with newer, stricter requirements, for which they may not be prepared.

A number of discussions around MDR and how it might affect our customers and digital health innovators inspired us to write this article: summarizing the “must-knows” of MDR for those of you who are still in doubt about the Regulation, or will have to face it in the future. We hope it will help you get confidence on where to get started, and provide you with the keys to get your MDR compliance done right in a simple yet effective way.

*The  tags below will outline the specific areas of the Regulation where we could provide you with further assistance if needed. But first, let’s get into it.

MDR-Checklist:

• Are you a medical (eHealth) device provider?
• Do you operate on the European market?
• Still not ready for MDR yet?
  

If all your answers above are “YES”: then now is the time to take action. So what is MDR exactly and how will you prepare for compliance?

MDR, explained.

MDR is the new European “Medical Devices Regulation”. Applying to all companies placing “medical devices” on the European market, it came into force in May 2017 with a 3-year transition period (which is soon to expire) and sets out the new EU rules to ensure safety and performance of med devices within the Union.

Specifically, it was designed to bring the EU market to newer safer, higher standards, align with digital health innovation, and put patients safety and transparency at the heart of the EU healthcare industry.

Simply explained, MDR works like this: it classifies “medical devices” according to risks and then defines the appropriate legal requirements for each class. 

By “medical devices”, MDR means: any instrument or software that is intended to be used for some specific predefined medical purposes, such as health diagnosis, treatment or monitoring, including digital health and eHealth diagnostic devices. All targeted “devices” and ”intents” are listed in the regulation. If in doubt about yours, refer to art. 1 & 2 MDR.

To successfully achieve compliance, you will have to understand MDR objectives and how they will impact the affected businesses. Among the main objectives of MDR are:

• To improve safety, quality and reliability over medical devices: thus, most devices – maybe yours? – have been reclassified to higher risks class and will thus need to comply with further requirements in order to stay/be in the EU market.

• To strengthen transparency of information for consumers: every product placed, put into service or made available on the market will be registered in the EU Database for Medical Devices (EUDAMED) with a “unique device identifier” to keep track of it.

• To enhance vigilance and market surveillance: pre- and post-market data collection will be mandatory to prove products efficiency. For that one, we strongly advise to review for GDPR-compliance, and watch for any other applying regulation.

The time is now:
As of the date 26 May 2020, MDR will fully apply and replace the existing Medical Devices Directive (MDD) and Active Implantable Medical Devices Directive (AIMDD). All affected companies will have to meet with the new requirements by then.

The 6 steps to compliance:

Once you’ve established that you fall under MDR (see MDR flowchart above), here are the 6 steps to achieve compliance:

#1 Product (re)classification:

First, check MDR classification rules to determine the right conformity route to follow: should your device be (re)classified in Class I, IIa, IIb or III?

For software devices (Rule 11, Annex VIII MDR), it works like this:

• Software for diagnosis or therapeutic intent are Class IIa, except if involving possible death or irreversible deterioration: then Class III, or a serious deterioration or surgical intervention: then Class IIb. 

• Software for physiological processes monitoring intent are Class IIa, except if involving vital physiological parameters and possible immediate danger for the patient: then Class IIb.

• All other software is Class I.

#2 Notified Bodies?

If not Class I, a third-party auditor (known in the industry as a “Notified Body”) will be required to assess product’s conformity. You can choose one from that list.

#3 Technical file:

Set up and update a technical file that describes your product & reflects on its ability to meet with MDR requirements (that should include clinical evaluation reports, as well as code documentation for “software-devices”).  

• Tip: get your clinical data ready, you’ll probably need them before you know it!

#4 Management Systems:

Get a QMS, RMS & PMSS* in place or upgrade to meet with the new requirements. Better be safe than sorry: always be ready to be fully audited!  

• Tip: For digital health solutions: emphasize on code documentation & software security.

#5 EU Declaration of Conformity:

Fill up a document in which you declare that the product satisfies MDR requirements. YOU are responsible for the compliance of your product.

#6 CE marking:

 Get your product “CE marked”, that is, certified with a specific mark that indicates EU conformity. Once done, you’ll be ready to launch your product on the market!

Ready to comply yet? Now having read this, we hope you will be.

Get this job done and let us know about your success! 

Yours,
Stephanie & Evelina

Pryv makes compliance software for personal and health data. We help healthcare innovators preserve data privacy and rigorously manage personally identifiable information from creation, to use, sharing and disposal. Our software accelerates patient-centric innovation and helps to reduce up to 80% of the resources required to achieve compliance with Data Protection and Medical-grade Regulations. Get in touch and let us turn your compliance investment into a competitive advantage. 

——–

*QMS: Quality Management System,

*RMS: Risk Management System,

*PMSS: Post Market Surveillance System.

Sources:

• https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32017R0745 
• https://ec.europa.eu/growth/sectors/medical-devices/new-regulations_en
• https://mdreurope.com/ 

• https://www.slideshare.net/mobile/levshapiro/mhealth-israelthe-new-regulatory-challenges-in-europe-the-clinical-evaluation-of-your-devicesmichael-imhoff
• https://www.medicalplasticsnews.com/news/how-will-eu-mdr-affect-the-ce-marking-process-for-medical-de/
• https://medcitynews.com/2020/01/what-will-the-medtech-sector-look-like-under-eu-mdr-law/

The post Get your MDR compliance done right: explained in a less than 5 minutes read appeared first on Pryv.

Companies tend to put their best resources and minds on getting the best product for their users – it’s normal. But in doing so, a number of organizations are failing at organizing their data lifecycle. First, it is not a simple task: it’s a blend of legal, IT and business-logic actions which need to be designed to meet current data and regulatory requirements, as well as to last over time. 

Also, very often, while focusing too much on the data processing stage, organizations forget about the importance of carefully managing the data at all of its stages, which can rapidly become an issue. 

Data without proper management can not only create privacy and security gaps, but also position the entire operations of the company at risk. Not to mention the fact that you would probably get more insights from the data once you’ll have a clear picture of your company’s entire data economy.

Hence, having a proper oversight of the data lifecycle stages and how to implement them within your organization is absolutely essential: not only to achieve business efficiency and properly address all relevant privacy and data protection requirements, but also to ensure seamless interoperability and scalability.

• Does your system have interoperability capabilities to allow easy integration and manage diverse data-sets? Can it scale over time?

• Does your system properly address all the current regulatory requirements? Are you ready to adapt to forthcoming changes?

• Is your company prepared to efficiently handle users’ data requests: “where is my data? Who does access it? Can you delete it?”
• Can you prove that you have executed your users’ rights and consent correctly?

At Pryv, we made it our core business to answer these critical questions, and made available for businesses a ready-to-use solution to manage personal data, rightly. 

Meet Pryv.io: Simple, yet remarkably powerful personal data management platform. 

Pryv.io is an extensible personal data lifecycle management platform specifically engineered to empower businesses to rapidly create and scale breakthrough, privacy compliant products.

• Its data model is precisely designed to aggregate and distribute multiple sources of information. The API allows you to easily collect and store any type of personal data.
• Dynamic consent and auditing capabilities ensure that beyond allowing your users to benefit from their lawful rights, you can prove that they were respected and executed rightly.
• Decentralized and per-user data storage distribution are also included as must-have features to guarantee your business scalability across legal environments.

Focus on your core business knowledge and let pryv.io optimize your organization’s resources for a responsible, efficient, and lawful collection, use, sharing and disposal of information.

(1) Data Collection: Seamless connectivity, interoperability with no-limits.

Pryv.io allows you to collect data from any source of information, including, but not limited to: 

• Internet of things (IoT) devices 
• Mobile applications
• Server-side data collection for web-enabled applications
• Any other source

It further supports collecting, aggregating and storing data, such as: files, health metrics, locations, audio samples, notes, pictures, activities… you name it! So that you can collect any type of data you need to fulfill the purpose of your organization – today, tomorrow, and beyond.

While we already implemented a various number of Standard Types for the data, our customers are allowed to design their own data models and implement it under Pryv’s conventions if needed.

To know more about how Pryv.io allows you to collect and aggregate data from multiple sources for a subject, you can take a peek at our Data Modelling Guide which further explains Pryv’s Data collection.

Pryv.io High Frequency: unleashing IoT Connectivity with High Throughput Data Ingestion.

In case data is collected by IoT devices, Pryv goes even deeper and unleashes IoT Connectivity with High Throughput Data Ingestion. Ingesting data at almost any speed your underlying system allows, making storing data at high frequency a breeze for your organization.

(2) Data Aggregation and Structure: All data is kept per-user, total control over privacy

The value of combining a robust amount of data and diverse datasets is essential for providing personalized offerings. We understand that and offer you a way to do it efficiently, compliantly.

Inherently, all data is collected at a specific moment in time. We thus designed a data structure that approaches all collected data as “time-stamped data”, providing companies with an interoperable structure that is easy to understand and work with.

This extendable and scalable solution allows for unlimited types of data to be structured in a unified model and organized hierarchically, enabling the data to bring meaningful insights to organizations.

Based on “streams” and “events”, pryv.io provides a unique ontology (Pryv SA know-how and trade secret, labelled as fully “Swiss made” technology) that allows for interoperable structure designed to serve Privacy and Development Teams.

Pryv.io Data Model: Data structures for interoperability

To let data be easily understood and exchanged across systems, we provide an open directory of standard types, which we recommend developers use when interoperability is a concern (read more)

(3) Data Storage: Decentralized design to span the globe with no bottleneck.

Organizations should always know what data they are collecting, who can access it, and who will effectively access it before making any decision about where the data should live.

With Pryv.io, you can easily store data into a distributed environment to enable local (on- premise/per choice) Regulations Compliance, and even create installations that span the globe and co-locate the data with the users’ legislation.

Based on a powerful distributed model, users are distributed among servers with no global bottleneck.

Each user account can be served by a different server, which can be located anywhere. The capabilities are set by the architectures in terms of bandwidth and storage. The architecture is designed according to the client’s needs.

(4) Data Sharing: Dynamic Consent and Protected Access.

A clear sharing mechanism allows giving access to selected pieces of data to anyone, while still retaining full control over the data. Pryv.io enables you to define accesses with different levels of permissions for third-parties to interact with your data, or only particular folders of your data.

Through a sleek “campaign manager”, it manages access permissions of multiple accounts, making storing accesses of multiple data subjects that gave you their consent easier. The perfect solution to be able to retrieve all data accesses and facilitate data aggregation.

Learn more about Pryv Consent Aggregation on our dedicated web page.

(5) Data Audit: Transparency at a glance.

Pryv.io provides access to audit logs and pre-built compliance services. The Audit logs keep track of details about the actions performed by clients against Pryv.io accounts through the Pryv.io API. 

A full audit trail documenting interaction with the data is embedded in the solution: who does create the data-point, when and under what granularity a consent is given. A proof that any access is authorized is provided  by listing all the processes applicable under GDPR, such as: who did access and review the data and when.

Pryv.io facilitates compliance with existing and future data protection and privacy regulations on a global scale.

(6) Data Retrieval: protected backups for your users.

Pryv.io allows you to provide your users with the option to backup their data on their computer.

For example, we developed a ”blue button” app, which will allow the data to be exported as JSON files and packed inside a password protected zip in one click.

(7) Data Deletion: Data erasure on demand – proven and safe.

One of the biggest issues with the data collection is that very rarely it is made clear for how long the data will be stored before being deleted. Only a few businesses provide their users the option to use the “download” and “delete” buttons.

Pryv.io proposes a specific mode that enables isolation of per-user data in back-ups for deletion.

Pryv.io Lifecycle Data Management Platform allows you to manage your data, rightly. 

While your core business revolves around data collection, ours revolves around you. We thus made sure that our platform not only offers you a successfully proved solution, but also addresses all your concerns:

– Deploying Pryv.io on your infrastructure is made within minutes.

– We continuously develop sleek adoption tools that make it easier for you to work with your desired data-sets. Documentation, libraries, demos… Everything you need for faster integration.

Book a demo and tell us more about your project/issues, we’ll be happy to help!

Authors:

Evelina Georgieva, co-founder @ Pryv SA

Stephanie Tischhauser, Privacy Expert & Digital Content Writer @ Pryv SA

=====

Pryv helps life sciences and healthcare organizations preserve data privacy and rigorously manage personally identifiable information from creation, to use, sharing and disposal.  

Our software accelerates patient-centric innovation and addresses the enhanced data individual’s rights under GDPR such as transparency, portability and right-to-be-forgotten.

The post The Personal Data LifeCycle, sorted out by Pryv. appeared first on Pryv.

Flip the coin and you’ll see that the true potential of the data that you collect lies in its aggregation. Your data scientists will only be able to unlock its value when identifying rich data sources, aggregating them with others, and pooling large quantities of formless data.

With Pryv.io, we enable you to pool and analyze data meaningfully.

Data pooling enables you to combine data sets coming from different sources. 

Let your Data Scientists Deep Dive.

Your data scientists need data. A lot of it. They can only make discoveries while swimming in deep data pools. Let them deep-dive – ensure that their swimming pool is deep enough.

How to do so?

Let’s assume that you aim at developing a Digital Health platform, fed with aggregated personal data. So data pooling means that you can:

• combine together data on one individual coming from multiple sources such as medical devices, specialist clinics, health records.
• merge into one file multiple datasets from many patients coming from various countries or institutions. 

In both cases, this is what makes the data pool deeper and generates value for your data scientists. 

The wait is over: the icing on the cake.

Now you know why data pooling is indispensable to get valuable insight from data that you collect. Unlock your business value by ensuring that your data scientists are provided with enough data at a glance.

The best is yet to come- the Icing on the cake : Pryv.io does it for you. From data collection to data aggregation, data structure and understanding, Pryv enables you to get the most out of the data you collect. Let’s walk through an example to illustrate where Pryv.io stands and how we can help you.

It’s often that you are collecting data from different sources and that you need to share the whole or only part of the aggregated dataset with various third parties.

So let’s go through a basic use case, in which you are conducting a clinical trial involving hundreds of patients from different institutions. You are researching the impact of allergen exposure and nutrition diet on the sleep behavior of patients, and you’re having three different teams analyzing the collected data from different perspectives :

• Team A needs to analyze personal information from every patient (such as age, gender, ethnicity, etc);
• Team B is combining allergen exposure with sleep data to identify patterns;
• Team C is looking at the relationship between nutrition and sleep.

Already getting a headache just thinking about how to structure your data efficiently to aggregate it and share only what each of the teams need?

Pryv.io enables you to aggregate data from multiple sources and to share only what is needed.

Pryv.io has developed a tool that solves it all for you. Our aggregator allows you to pool data from multiple sources at once, and to create appropriate and up-to-date datasets with data across multiple accounts for each team to work on.

How is that?

• Pryv.io aggregator enables you to collect and aggregate any type of data from all your patients. Data from a smartphone, a smartwatch, a health record, any source of data, all in one place.
• Our data model in “streams” and “events” structures your data, and allows your patients to grant your app/or your team access to the needed streams. (more on that in this article)
• Each patient’s data subset gets aggregated into your own database and the appropriate datasets are exposed to your teams and your algorithms/apps.

• Once datasets are allocated to each team by sharing the appropriate subsets of streams, they get automatically updated. It means that as soon as new data from any patient is collected, a webhook notifies the server that fetches the data and updates the dataset for the concerned team (more on webhooks in Pryv.io here).

All at once, you can now collect and aggregate data coming from different sources for one to thousands of patients, and create multiple data pools so that your data scientists can work more efficiently and get the most out of your collected data. All of that while respecting the data privacy of your patients, and ensuring a trusting relationship.

It’s as simple as that, so you have one less thing to worry about and one more to benefit from: Pryv.io.

Ana @ Pryv

The post Data pooling: Get the most out of the data you collect appeared first on Pryv.

In this article, we will show you the power of using Pryv.io data-audit to de-risk your compliance. 

So what are audit logs?

Audit logs maintain a full and complete history of every change that has been made on a piece of data, by whom and when. An audit log is the simplest, yet also one of the most effective forms of tracking temporal information. Any time something significant happens, a record indicating what happened and when it happened, is generated.

What do data audits look like? 

It can take many physical forms, but the most common form is a file. It must contain all relevant information concerning the sequence of activities that affected at any time a specific operation, procedure, or event in an IT system. In addition to documenting what resources were accessed, audit log entries usually include destination and source addresses, a timestamp and user login information.

Why do you need to use data-audits? 

Stringent data protection regulations become a major concern to organizations. Bolstering your data management capabilities to meet compliance is a priority and business-critical.

Beyond being a good practice, using data-audits will not only allow you to keep logs of any data interactions but also to “demonstrate compliance”, which is a key point of the GDPR.

Furthermore, audit logs have taken on new importance for cybersecurity and are often the basis for diagnostic performance, error correction and security analysis.

De-risk your compliance with data-audit at Pryv.io

Audit logs keep track of details about the actions performed by your app users against Pryv.io accounts through the Pryv.io API. 

In other words, it describes the source (the identifier for the action that generated this log), the type of log, the time when it was executed, the audited action (typically the API method call), the identifier for the access used to perform the audited action, and the HTTP response status resulting from the audited action.

Here is an example of a single audit log in Pryv.io : 

You can see that the IP address “172.18.0.7” was used to get the events from the stream “Diary” at the time 1261988300 seconds, and that the attempt was unsuccessful as the used access has expired, all of this at one glance.

Audit logging is an essential ingredient for your infrastructure. By using the capabilities of Pryv.io log management system, you are a step closer in succeeding your compliance auditing. 

To learn more about how audit logging in Pryv.io can help you, check out our API reference for it. 

Address existing and forthcoming data protection requirements and future-proof your regulatory compliance with Pryv.io.

The post Audit logs in Pryv.io : When every single piece of information matters appeared first on Pryv.

“2020: Make trust first priority…”

So what? Enough with words, actions need to be taken.

The loss of trust.

Today, if you’re in the business of collecting sensitive personal data, building trust with your customers is essential for growing your business.

For many years now, users have been misguided and left in the dark regarding the processing of their own personal data. As a result, they tend to be more reluctant when it comes to sharing confidential information.

It’s simple: if your customers don’t trust you, they won’t provide you with their most sensitive data – and that is especially true in the healthcare sector.

Trust needs restoring.

Privacy and data protection regulations are trying to compensate for that fact, but the truth is: most companies still fail at implementing great consent solutions to keep data collection secure.

Yet, consent is most certainly your best opportunity for restoring that trust, dear business owners. Instead of approaching consent with fear and restraint, you should embrace the opportunity to win new customers and engage better with your existing ones!

But, first thing first: does your customer trust you? Truly?

Enhancing trust requires rethinking consent.

From a business perspective, “consent” is a legal requirement that a company should get in order to collect, use and further profit from their customers’ data.

Certainly, this way of thinking is precisely why most companies fail at implementing consent: they use it as a way of protecting themselves instead of taking it as an opportunity to build a trusting relationship with their customers.

So what is the key to rethinking consent?

If the “customer is King” for business, “Consent is King” for trust.

Consent is not about you.

From a customer-perspective, consent is their right to fully understand and choose how you would actually use and collect their data. So don’t make it all about you.

Rightfully ask for consent and don’t let the prospect of a quick profit blind you. Chances are: you’ll get a lot more out of a lasting relationship.

Moreover, consent should be easy to give or revoke any given time. And when it comes to sensitive personal data (like health-related data), it should always be explicit.

It should be “freely given”.

Be straightforward and simple when requesting access to data. Even if you are tempted to get more data by using gamification strategies, be careful. While it is one thing to motivate your customers through games and a user-friendly interface, it’s another to get consent over addiction.

Simply explain how you will turn the shared data into meaningful insightful feedback to your customers. And don’t use dark patterns like rewards and punishment to discourage your customers from exercising their rights to privacy.

Instead, why not use these same techniques to get a “specific, informed and unambiguous” consent?

Dynamic consent.

Dynamic consent is a new approach to consent that allows companies to put data users back at the center of the decision making process.

More specifically, it is a personalized digital interface that enables two-way communication between data users and data collectors, thus allowing for customers to give or revoke consent at any step of the way.

Generally, it is that part that companies fear the most: the risk of having users withdrawing their consent which will lead to less available data to be processed.

Turning risks into opportunities!

Of course, there is a risk to allow your customers to revoke consent.

But there is also a risk not to! From GDPR fines to having customers quitting your application due to the lack of flexibility, risks of losing money and data are pretty much everywhere and are no justification for bad practices and unrightful solutions.

Also, with each risk comes an equal opportunity! In that case: building a strong, compliant growing business. What is to fear about that?

Additional benefits.

New customers, further engagement from existing ones, relevant insights based on consent choices, a proof-regulation, compliant business, a lawful, ethical and challenging work environment… There are many ways in which you can actually benefit from properly implementing and managing consent, but only if you choose to!

Just remember that building trust and empowering your customers with transparency and choice will not only benefit them, but also you and your company in the long run.

Additionally, consider that not managing consent properly also has its drawbacks.

2020: Trust in consent-power to strengthen your business!

While most companies often think only about “lost profits”: How much will I lose if they revoke consent? Would they have consented if they didn’t know?… be the one to win profits!

If you haven’t ever considered how much you could actually gain from properly implementing and managing consent, after reading this article, we hope that you will.

Wishing you all the best and success for 2020, Stephanie & Evelina.

Next article is coming soon!

Authors:

Stephanie Tischhauser, Privacy Expert & Digital Content Writer @ Pryv SA
Evelina Georgieva, co-founder @ Pryv SA

Resources:

• https://www.weforum.org/agenda/2020/01/how-to-restore-trust-in-data/
• https://www.innopay.com/en/publications/digital-consent-management-key-data-opportunities
• https://fil.forbrukerradet.no/wp-content/uploads/2018/06/2018-06-27-deceived-by-design-final.pdf
• https://en.wikipedia.org/wiki/Dynamic_consent

The post Should companies fear “CONSENT”? appeared first on Pryv.

Today, collecting personal data is made easy, many would say. 

While collecting data can be easy, getting valuable insights from it is certainly not. 

Even more, managing it properly so that you win your users’ trust and stay on top of the regulations is the hard job to do.

• What if you could spend less time worrying about how to manage personal data?
• What if you could use this time to increase your users’ trust and engagement?
• What if you could focus on your own benefits and return on your data investments?

With Pryv.io, we enable you to manage personal data rightfully – from the first time and overtime. 

No matter the existing and upcoming regulations on data protection, our software allows you to remain compliant at all times and to build a trustful relationship with your users.

So how does it work? Let’s walk through a basic use case to see how Pryv.io solves data privacy challenges.

Collecting personal data in real-time allows you to gain valuable insights quickly and to make decisions accordingly. 

Let’s say that you have built an algorithm that computes allergen exposure based on geolocation data and displays it on your app to users and their doctors.

This involves three types of actors : 

1. Your app users;
2. Your algorithm, that processes the geolocation data of the users and computes the allergen exposure;
3. Doctors, who consult the allergen exposure data and provide feedback to the app users.

Your algorithm takes the personal geolocation data, processes it, outputs the allergen exposure and shares it with the user (patient) and doctors on the digital app at any time.

Easy? Well, sounds easy enough to collect personal data until you need to prove that you have the right to collect it and handle data privacy correctly.  

• The geolocation of your user is a personal, sensitive data.
• Your user has the right to revoke his consent and to decline sharing this sensitive data with any other third-parties (such as doctors, in this use case). 

However, your user really wants to use your app to help him and to be guided by his doctor about his allergen exposure. Is this possible? We made a simple way to do it. 

Sensitive Personal Data Sharing, Simplified.

Only the algorithm needs to see the geolocation data, and nobody else, so why not just restrain the read access of the geolocation data to the algorithm?

And restrain the allergens data to the user and his doctor?

And oh, what if his doctor wants to communicate his feedback to the user?

…

Starts to get a bit more complex, mmh ?

Let’s draw it simply in “streams” and display the data using Pryv Data Model :

When structuring the data in “streams” (which act like folders on your computer), you will be adding “events”, corresponding to time-stamped data in the related stream, and managing the level of “access” to this stream (‘read’, ‘manage’, ‘contribute’ or ‘create-only’).

For example, the stream “Position” will only contain events of type “position/wgs84”, whereas the stream “Allergens” will contain substreams of allergens (“Pollen”, “Cereal crops”, etc) with events of type “density/kg-m3” …

Now you see how our data model in streams and events is helpful. 

It has never been that easy to take and share only a piece of data, with different levels of access.

For your app, it means that: first, the data is collected, aggregated from different sources and structured in the right way in Pryv.io. Then, it enables your app users to decide what they want to share and with whom, and to revoke that access at any time.  And finally, it gives you peace of mind for any data privacy regulations, as all the requirements to meet are already designed in Pryv.io. 

As an app user, you decide if you :

• want the algorithm only to be able to see your geolocation? 

Share the stream “Position” with a “read” level.

• want your doctor to see your allergen exposure? 

Share the stream “Allergens” with a “read” level.

• want your doctor to give you feedback and advice? Share the stream “Doctor’s feedback” with a “manage” level, enabling the doctor to add his comments in newly created child streams of this stream.

This can be all automated by creating access requests from your app. It will send a notification to your user to request access to the stream  “Position” stream on a “read” level and to “Allergens” on a “manage” level.

Building a Trustful Relationship with Your Users, made easy.

By structuring the data you collect in this way and sharing the data of your user at a very granular level only to authorized third-parties with the user’s explicit consent, you establish a trustful relationship. 

The more trust your users have in your app, the more data they will share.

According to the data your users are willing to share, you will be able to adapt the user interfaces to the different third-parties and display only authorized data.

Respecting your user’s privacy will make your users more prone to share personal information with you. 

And the more data you will get, the more you will be able to provide valuable insights for your customer.

It has never been so easy to bring confidence to your customers. Simple, fast and effective, building your own solution on top of Pryv.io ensures you a long and trusted relationship with your users. So you can spend less time worrying about how to manage personal data and use this time to increase your users’ engagement. 

Now, focus on your own benefits and return on your data investments.

With Pryv.io, we enable you to manage personal data rightfully – from the first time and overtime. 

Ana @ Pryv

The post Beyond data: Pryv.io helps you win users’ trust: collect and use their personal data rightly appeared first on Pryv.

Fast world, fast life- technology made the world change in milliseconds. Every second, a new piece of personal information is born. It begins its long journey in this digital world from being created, updated, acknowledged … leaving digital footprints with the purpose to be transferred into valuable insight to someone. Regulators made it clear, as owners of these pieces of information, each individual (user) can execute his rights to demand their full traceability at any given time. 

Wait a second?!? Sometimes even a delay of several microseconds is not acceptable. 

For the app developers of personal-data fed solutions, delivering on this is challenging.

In this article, we provide you with worth-to-know insights on how Pryv.io notifies your app of any data changes from now; what are webhooks, why you’d better use them and how to integrate webhooks into your infrastructure with Pryv.io. 

The wait is over : webhooks update data before you know it

If transfer of information is happening in real-time, users expect to get updates on what is being done in the blink of an eye. Having to wait until your app or your server goes to check on its own if something new happened with the data you are collecting is not acceptable anymore.

Well, this is exactly why webhooks have been created; and this is also the reason why we decided to implement them on Pryv.io. When you require real-time notifications of events, using a webhook is really your best option.

What exactly are Webhooks?

By definition, webhooks are a way to set up a push notification to a predefined URL endpoint. It is triggered by some event that one wishes to be alerted of, mostly in order to act on it. These are automated messages sent from web services when something happens. 

It’s how PayPal tells user’s accounting app when their clients pay them, how MailChimp notifies their users of common events such as subscribing, unsubscribing and profile changes, how Shopify keeps some parts of their users’ commerce and fulfilment system up-to-date…and how Pryv.io notifies your app of any data changes from now.

To put it simply, webhooks act much like push notifications. Each time when a data change occurs in the account of your app users, your web service gets notified. Let’s say for example a new event related to their physical activity. As soon as the new event has been created, your web service gets a message like “Hey, something new just happened on one of the accounts !”. A data change has occurred in your users’ data, and your web service got notified about it. You can now process the fresh and up-to-date data with your algorithms.

 Webhooks work the same way.

The point of contact between your server and the webhook is the URL that was provided at the creation of the webhook. You get notified of data changes in a web service using webhooks, that send an HTTP POST request to this URL with a payload similar to the notification message below :

The server which listens to the provided URL receives the request and only needs to retrieve events and streams since last change to see what’s new. Nothing left to be done. 

Why use webhooks?

Having up-to-date data is crucial for your process or your algorithms to work properly. You need to have reliable information to be able to keep your algorithm at pace with data changes happening in a few seconds. 

But you don’t want to have to go manually knock on the door and check whether you have some fresh information on your user’s data account, do you ? What you want, and what you actually need, is the information to come to you automatically and tell you : “There is something new waiting for you, just come and have a look.”. 

Automation leads to optimization.

Still not convinced ? Here is a concrete use case that can fit the service you are offering with your digital app, your clinical trial or any research you are performing with personal data.

Let’s say that your service integrates health or personal data using your Pryv.io platform, and you’d like to allow your app users to share their data with doctors or any other third parties, and to maintain the aggregated dataset up-to-date. 

You can easily do it now. Thanks to webhooks.

How ? The user first consents to give access to the doctor or any other third party to his data. Each time he records new data with your app, the data is added and stored on the dedicated Pryv.io platform. The webhook notifies the web service whenever a data change occurs, which automatically maintains the dataset up-to-date. 

The doctor can then retrieve the latest data of any user and consult the updated aggregated dataset whenever he needs.

The user can revoke his consent at any time, which notifies the web service through webhooks and removes his data from the data record.

As simple as that !

Want more ?

If you are craving for more technical information about Webhooks and how to use them on Pryv.io, check out our new dedicated section about Webhooks. 

The post Webhooks at Pryv.io: When data ages in milliseconds, waiting is not an option. appeared first on Pryv.

“GDPR displaces the problem. The problem is not data protection, but data collection” – said Edward Snowden 

We code and we are passionate about developing privacy-preserving software. So this statement got us thinking: isn’t the real problem actually that developers don’t know much about the legal requirements that come with the development of their applications? 

In this article, we would like to provide you with a way of development thinking that could help you overcome this challenge, or at least offer you a gift from Pryv: a little roadmap to privacy-compliance (or the 10 facts you should know when developing personal data collecting apps).

A little roadmap to privacy

As we acknowledge the need to restrain abusive data collection practices, we also believe that, with the right knowledge and intent, the collection and processing of personal data can actually help a lot. 

For this reason, we’ve decided to gather and further explain some facts about data, privacy, GDPR and compliance that (we hope) will help and guide you when confronted with the collection of personal data. Just like a roadmap brings you straightforward where you want to be.

So here are the 10 facts that we think you should know – or some tips that could help you achieve privacy:

#1. Different kinds of data need different kinds of attention.

The law distinguishes sensitive data from personal data. And did you know that personal data that are sensitive data in regard to the law requires specific protection?

For example, collecting health-related data will require you to be more cautious about consent and security than collecting the language personal preference of your customers. 

Tip: Always be aware of the kind of data you aim at collecting and using- today, tomorrow and in the further development of your project: so you can build your data infrastructure right from day 1. 

#2. Data minimisation is a thing.

Did you know that the law also requires you to only collect and process data that are actually needed for the purpose of your application? GDPR calls it “data minimisation”. And it applies to any personal data collecting app. To yours, too. If you doubt it, let’s check it out together. 

Tip: With that in mind, you should then always have a strict purpose for your application, and define the data that are strictly necessary to achieve that purpose. Don’t worry if you cannot project from now your future data needs, we prepared you another “tip” for this below.

#3. Metadata matters.

And more importantly, they can give way more information than you think. 

For example, by consenting to give you their geolocation data, your customers could certainly provide you with more information on their daily habits than they do with their actual logs about it.

Tip: Make sure that your customers are always aware of what data you collect and what you are doing with their data, who can access it, and for what purpose. Be clear and transparent.

#4. GDPR key concepts are a good start…

The right of access. The right to rectification. The right to be forgotten. The right to restriction of processing. The right to data portability. The right to object…

Tip: If your application falls under GDPR, these are the rights (or at least some of) that you should be able to provide to your customers. So make sure you take that under consideration when building your data model.

#5…but Privacy-by-design is the thing!!

GDPR is a good start if you’re looking for general guidelines to achieve privacy: by having these key concepts in mind, you will more likely tend towards a Privacy-by-design approach, and will thus likely make your code also more “regulation-proof”.

Tip: Privacy isn’t only about compliance. It is also about transparency, and building trusted relationships with the users of your application. And as outlined in our previous article, using a privacy-by-design approach will probably save you a lot of trouble in the long run!

#6. Consent is (not) an issue.

Consent is any “freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.”

Moreover, unless explicitly agreed for a concrete period of time, the consent must be easy to give and revoke at any given time.

Tip: You should always keep in mind that consent isn’t given by default. And your customers shouldn’t be asked to implicitly consent with your architecture either.

Now, have you ever heard of dynamic consent? If not, better get to know about it, as it will give you the flexibility and scalability you are looking for.

#7. Scalability meets compliance. 

Today, you prepare your code to be GDPR-compliant. Tomorrow, the ePrivacy Regulation will ask you additional layers of protection and code adaptation. And for what you know, your app could also soon be categorized as a medical device under the new Medical Device Regulation, or it could just be the market itself that suddenly requires you to adapt your software accordingly. 

Tip: Ensure scalability across legal frameworks. Not only with regard to existing and forthcoming regulations, but beyond. Regulations come and change, scalability is by-design.

#8. Proven compliance is a must-have.

Indeed, documentation is boring…(we know right?!), but required. We bet that you tend to postpone this part. The truth, however, is that within the context of managing personal data, your code will be audited. You will have to prove that you collect consent properly, store and share the data compliantly, aggregate and analyse on-purpose, and that you can validate that the data has been deleted, whenever the will for this is given.

Tip: Play smart, not hard! Evaluate a ready-to-use privacy-by-design solution, which is already documented, so you can free yourself from the hard work of documenting your code. We heard our customers say that they really appreciate us having this for them.(check it out) 

OR:

• Document your decisions and development processes to prove that you know what you do and how.
• Document your code to make it audit-able.
• Document how you collect the data and for what purpose 
• Document each time a process access data.
• Document each time data is erased.

Note that some of this documentation should be generated by your digital solution itself.

#9. Data breaches happen.

But only to others, right?! As developers, it is always tempting to go to « the cool stuff » and then unconsciously skip some very important steps. 

Tip: Mind-shift. By having in mind that a breach could happen to you, you will take more precaution and arm yourself (and your software) to handle the crisis. So take this risk seriously and don’t forget about security. 

#10 (….)

We listen. Carefully. So if you are a developer of a personal data-based app, what do you think would be the 10th fact to consider, so we can make this « cheat-sheet » excellent?

Now it’s all about you.

At Pryv, we aim at empowering companies and developers so that they can rapidly create and scale breakthrough, GDPR compliant products, and know what to keep in mind when developing personal data collecting apps. So we hope this article will help carry out our mission.

And if you’re interested to know more about our API and data model, you can check it out at pryv.github.io

Our next article coming very soon!

Yours,

Stephanie & Evelina

Resources:

• https://gdpr.eu/article-4-definitions/
• https://gdpr.eu/article-5-how-to-process-personal-data/
• https://gdpr.eu/Recital-51-Protecting-sensitive-personal-data/

The post 10 facts developers should know when developing personal-data collecting apps appeared first on Pryv.

Medisanté and Pryv join forces to combine the best of both worlds, thus making Remote Patient Monitoring simple and scalable while ensuring GDPR compliance out-of-the-box.

Lausanne/Lucerne, Switzerland, March 19th, 2020 – The Swiss leading provider of privacy and personal data management software, Pryv SA, and Medisanté Group AG, the world’s leading provider of direct-to-cloud medical IoT infrastructure, announced a strategic collaboration.

A simple and secure solution for remote monitoring of patients at home is ready to be implemented by any home-care service and healthcare facility, globally. The platform addresses the imperatives across the continuum of care: focusing on delivering seamless user experience, reliable health-metrics, and establishing a patient-to-care team relationship, without compromising on data privacy and digital ethics.

 ”Today, more than ever, remote access to care is nothing less than an indispensable service. We are thrilled to be able to work with Medisanté products, which have been proven in delivering the unbeatable strength of accessibility, connectivity, and usability.” says Pierre-Mikael Legris, CEO at Pryv. “Leveraging on Medisanté’s zero-touch medical IoT infrastructure, we are determined to ushering remote patient monitoring and telecare where it is needed the most, to anyone, at any time”

Strengthening the adoption of innovative digital health solutions relies on two main pillars: usability and trust. The personal patient data is critical and highly sensitive- thus, undoubtedly, security and privacy are at the core of designing reliable medical-grade digital solutions. GDPR, MDR, national-specific regulations and reimbursement plans set up high entry barriers for medical IoT and digital healthcare providers, leaving them no choice but to comply. The regulations make it clear: « consent should be explicitly and freely given». Moreover, any system provider should be able to offer an opt-out option at any given time.

“Our strategic partnership with Pryv offers a major added value to care organizations and CROs using our solution for Remote Patient Monitoring, as it allows them to guarantee data privacy. It also gives them top-grade tools to manage explicit consent to share patient data with the various stakeholders, such as health insurances in countries where reimbursement of RPM is dependent of a minimal number of measurements performed by the patient each month.” – Gilles Lunzenfichter, CEO and Co-founder of Medisanté

Harnessing the power of medical IoT devices allows keeping track of patients’ health outside of the healthcare premises, drastically decreasing costs, optimizing resources and most importantly significantly improving the well-being and comfort of patients.

Facilitating the care teams’ daily operations while scaling up telemonitoring to millions of chronic and elderly patients is a reality now. Not tomorrow, but today. Book a demo.

Powered by Medisanté & Pryv. 

ABOUT

About Medisanté: https://www.medisante-group.com/

Medisanté is headquartered in Switzerland and is an innovation champion in the Personal Connected Health Alliance where it chairs the direct-to-cloud workgroup. Its global direct-to-cloud medical IoT infrastructure radically simplifies the integration of Patient Generated Health Data into clinical systems. It combines the best of global tech for anonymous device data with the best of healthcare privacy for sensitive patient data. By abstracting hardware complexity and diversity in the home of the patient, Medisanté allows Remote Patient Monitoring to scale anywhere in the world. Its cellular devices and cloud-based hub – ELIOT Hub – abstract physicians from the complexity of devices and allow them to focus on achieving better medical outcomes for remote patients within their existing clinical systems. It also allows bio-medical engineers to manage remotely the device fleet across multiple types of devices as they would normally do within the hospital.

About Pryv:  pryv.gihub.io/www

Pryv makes health personal data processing as secure and trustworthy as online banking. We help organizations manage personal data from creation through use and sharing, as well as address the enhanced data subject rights under GDPR such as transparency, portability, and right-to-be-forgotten. Our solution, pryv.io, is an extensible personal data lifecycle management platform specifically engineered to empower developers to rapidly create and scale breakthrough GDPR and HIPAA compliant products, services, and experiences. The software has been developed to accommodate rapid integration. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management, and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing the most stringent data protection requirements.

The post Medisanté and Pryv Collaborate to Simplify Remote Patient Monitoring and Guarantee Privacy-by-Design appeared first on Pryv.

In Canada, the healthcare sector is the second largest sector affected by non-respect of data privacy.

Michael Benitah, President & Owner at Peel Solutions, said: “The legislation surrounding privacy in healthcare in Canada is very complex, with at least 14 different frameworks for protecting private information in existence. As the vast amount of digitized patient information continues to grow, pryv.io is an ideal solution because it meets the needs of businesses to manage privacy in an effective and transparent way in line with the strictest data regulations – not just for today, but also for the long term .” 

Since its inception, Peel Solutions aims at identifying the best-in-class innovative solutions to address key market needs.

“We fully collaborate with start-ups and scale ups from around the world, such as Pryv, and collaborate in expanding market shares and managing newly established business relations more effectively in Canada because we understand how their unique solutions answer number of local challenges.“said Michael Benitah. “Combining our industry, functional and technical expertise with the experience and capabilities of pryv.io allows us to provide a stronger offering to mHealth and other businesses, which manage personal data, ensuring that they consistently exceed their development and market goals.”

Pryv.io is an extensible personal data lifecycle management platform specifically engineered to empower developers to rapidly create and scale breakthrough data privacy compliant products, services and experiences. Empowering number of mHealth, MedTech and Life Sciences innovation projects and businesses, pryv.io has already a proven track-record of accelerating the development of personal data-centric platforms, 15 times faster and60% cheaper, and 100% right the first time, compared to in-house developments.

“Partnering with Peel Solutions expands our global  reach and is in line with our international development strategy,” said Pierre-Mikael Legris, CEO of Pryv. “The addition of Peel Solutions dedicated team, with its unique focus and expertise in the Canadian mHealth market, solidifies Pryv’s position as a 1st-choice provider to healthcare innovators and businesses that deal with sensitive personal data at a global level.”

About Peel Solutions

Peel Solutions, established in 2012 and based in Montreal, has a wide portfolio of software solutions expanding into many fields of expertise going from Business Intelligence, to mHealth, Cybersecurity and Data Protection.  With our passion for technology at the core of our business operations, Peel Solutions enables its clients to meet their fully respected potential. Through the consultation of our wide range of innovative multi-sectorial technologies, we are determined to efficiently answer our clients’ business needs and stimulate exciting new opportunities.

https://www.peelsolutions.ca/

About Pryv

Pryv SA is a Swiss software editor, founded in 2012, with offices in Switzerland and France.

Pryv makes health personal data processing as secure and trustworthy as online banking.

This paradigm creates new opportunities to turn compliance investments into a competitive advantage by breaking data silos, differentiating products and services, and attracting end-users with trust, transparency and empowerment. Our mission is to foster data-driven healthcare innovation and accelerate the time-to-market of e-health products and services by providing a turn-key Privacy by Design solution, pryv.io,  that helps development teams to build patient-centric digital experiences faster and cheaper in compliance with global personal data protection regulations. The pryv.io software has been developed to accommodate rapid integration. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing the most stringent data protection requirements

The post Pryv.io, personal data privacy and consent solution, now available in Canada  appeared first on Pryv.

La confusion vient du fait que, malgré tout, faire appel à un sous-traitant certifié HDS pourra souvent aider le Responsable du traitement à se conformer au RGPD… Qu’en est-il donc ?

La Certification HDS dans le contexte du RGPD

Selon le RGPD, une entreprise qui collecte et traite des données à caractère personnel doit remplir plusieurs exigences. Notamment :

• Définir les buts et finalités des données qu’elle collecte
• Recueillir le consentement des utilisateurs
• Garantir les droits des utilisateurs (droit à l’oubli, droit à la portabilité, etc.)
• Garantir la sécurité des données
• Mettre en place une procédure en cas de fuites des données
• Tenir un registre des activités de traitement des données (traçabilité des données)

Cependant, il n’est pas exclu que cette entreprise fasse appel à des entreprises externes pour l’aider. Par exemple, une entreprise peut décider d’externaliser les données qu’elle collecte auprès d’un hébergeur sous-traitant, lui permettant ainsi de ne pas devoir elle-même implémenter une solution d’hébergement, ni de devoir en assurer la sécurité.

Mais dans ce cas : comment s’assurer qu’un hébergeur offre des garanties suffisantes en matière de protection des données ? Comment s’assurer que les services qu’il propose sont sécurisés ? Et comment garantir que les droits de vos utilisateurs seront exercés ?

En France, ce problème est résolu par la Certification HDS.

Selon l’art. L1111-8 CSP, toute entreprise qui héberge des données personnelles de santé pour le compte d’un tiers est soumise à l’obligation d’une Certification HDS.

Pour obtenir cette certification, l’hébergeur devra démontrer qu’il remplit plusieurs exigences.Notamment:

• les exigences de la norme ISO 20071 (sécurité des SI)
• une partie des exigences de la norme ISO 20000-1 (gestion des services)
• des exigences complémentaires aux normes précitées
• des exigences relatives à la protection des données personnelles de santé
  (il est conseillé de se référer aux exigences de la norme ISO 27018)
• des exigences complémentaires pour la protection de ces données
• des exigences spécifiques au domaine de la santé

Ainsi, toute entreprise qui fait appel aux services d’un hébergeur certifié aura la garantie que celui-ci offre des produits et/ou services suffisamment sécurisés (en vertu des normes ISO correspondantes), et qu’il respecte la confidentialité des données hébergées.

Pourquoi les entreprises qui sous-traitent leurs données auprès d’un hébergeur certifié HDS doivent-elles encore se conformer au GDPR ?

#1 L’hébergeur n’est certifié HDS que pour les services qu’il propose.

La Certification HDS se décompose en six niveaux d’activité différents pour deux métiers d’hébergement distincts. On a donc :

Un certificat “hébergeur d’infrastructure physique” pour:

• • La mise à disposition de sites physiques permettant d’héberger l’infrastructure matérielle du SI de santé (1)
  • La mise à disposition de l’infrastructure matérielle du SI de santé (2)

Un certificat “hébergeurs infogéreurs” pour:

• • La mise à disposition de la plateforme logicielle (OS, middleware, base de données) du SI de santé (3)
  • La mise à disposition de l’infrastructure virtuelle du SI de santé (4)
  • L’administration et l’exploitation du SI de données (5)
  • La sauvegarde externalisée des données de santé (6)

Un hébergeur n’est certifié que pour les services qu’il propose ; il ne répond donc que des exigences liées à ses activités. Les entreprises doivent donc vérifier ce pour quoi leurs hébergeurs sont certifiés, et être au clair sur les services qui leur sont fournis.

#2 C’est l’hébergeur qui est certifié HDS, non pas l’entreprise qui utilise ses services.

Même si une entreprise fait appel à un hébergeur certifié HDS pour les données qu’elle collecte, cela ne dit rien sur sa propre conformité au regard du RGPD.

L’un des scénarios les plus courants est celui du “Shadow IT”. Une entreprise peut utiliser le système sécurisé d’un hébergeur pour ses données, mais si ses employés en gardent une copie sur des systèmes non sécurisés, alors ces données ne seront pas protégées.

L’entreprise doit donc toujours vérifier qu’elle remplit elle-même toutes les exigences du RGPD, même si son hébergeur en remplit certaines de son côté. De plus, il faut garder à l’esprit que l’externalisation des données repose sur un modèle de responsabilité partagée. 

#3 La Certification HDS ne couvre pas toutes les exigences du RGPD.

Enfin, il faut savoir que les exigences de la Certification HDS ne couvrent pas toutes les exigences du RGPD. Dès lors, même si une entreprise décidait de remplir elle-même toutes les exigences de la certification, elle ne serait toujours pas conforme au RGPD.

Ainsi, même en faisant appel à un hébergeur certifié HDS pour les 6 niveaux d’activité, une entreprise devra toujours veiller à se conformer elle-même, entièrement, au RGPD.

Un hébergeur certifié HDS offre simplement des solutions fiables sur lesquelles les entreprises peuvent s’appuyer pour atteindre leur propre conformité.

Pourquoi la Certification HDS peut néanmoins aider les entreprises à se conformer au RGPD en interne ?

La Certification HDS peut servir de guide pour les entreprises

Le RGPD ne donne que les lignes directrices à suivre pour les entreprises. Par exemple, l’art. 32 RGPD impose aux entreprises d’assurer la sécurité des données, mais ne dit rien sur la façon dont cette sécurité doit être implémentée.

S’appuyer sur les exigences de la Certification HDS peut donc les aider à se conformer au RGPD. Néanmoins, les entreprises restent tenues de se conformer à toutes les exigences qui ne sont pas couvertes par la Certification HDS.

Stephanie @ Pryv

June, 2020

Sources:

• https://esante.gouv.fr/labels-certifications/hds/certification-des-hebergeurs-de-donnees-de-sante
• https://esante.gouv.fr/services/hebergeurs-de-donnees-de-sante/les-referentiels-de-la-procedure-de-certification

• https://esante.gouv.fr/sites/default/files/media_entity/documents/hds_referentiel_de_certification_v1.1f_mai2018.pdf
• https://healthcare.orange.com/fr/actualites/rgpd-et-hds-quelle-compatibilite/
• https://www.linkedin.com/pulse/certification-hds-et-rgpd-une-analyse-comparative-francois-kaag
• https://www.village-justice.com/articles/hebergement-donnee-sante-rgpd,30355.html

• https://esante.gouv.fr/sites/default/files/media_entity/documents/asip—exigences-et-controles-du-referentiel-hds—-v1.1—en.pdf

The post Pourquoi la Certification HDS ne garantit pas votre conformité au RGPD? appeared first on Pryv.

The Patient Leaders are the champions who brought the patient voice to the forefront in enabling a patient-centred delivery of care and co-creation with the clinical, innovation and policy space.

The “who’s who” list of people shaping the future of healthcare using innovation and leadership to improve outcomes and patient-centred care delivery.

The FUTURE50 2019 European community consist of 23 top leaders in five categories; Government, Innovation, Healthcare IT, Patient and Clinical from the digital health ecosystem across 11 different countries in Europe. The remaining 27 leaders will come from Asia Pacific (nominations closed) and the Middle East (nominations still open).

For more information: https://www.himss.eu/media/himss-announces-future50-international-2019-european-cohort

https://www.himss.eu/communities/himss-future50-international

#healthinnovation #patientcentricity #HIMSS #digitalhealth #ehealth #HealthTech #privacy

The post Pryv CEO, Pierre-Mikael Legris, is among the 23 top leaders HIMSS FUTURE50 2019 appeared first on Pryv.

Dr. Damian Meli, Project lead at umana, said: “This partnership represents a further step in umana’s journey to building the most user-centric patient-doctor communication tool to be integrated with the Swiss Electronic Health Record system. Comprehensive data protection and compliance with data management regulations are essential to our development. We chose Pryv because they share our belief that the confidentiality and privacy of our users is a top priority. The integration of the pryv.io software is designed to meet the increasing demands from patients and regulating authorities for more transparent and trustworthy methods for the management of personal data.”

Pierre-Mikael Legris, CEO and co-founder of Pryv SA, said: “We are proud to have been chosen by umana. It shows that they are committed to the increasing value of digitized content in healthcare. By working with some of the world’s eHealth pioneers, like umana, Pyrv can accumulate reliable industry experience which we can deploy in our development and agile operating model. Not only has umana demonstrated that they value each patient, but they are also interested in building a relationship based on trust with them, which will surely foster more efficient digital communication between patients and healthcare providers.”   

Pryv’s privacy-by-design approach promotes privacy and data protection compliance to guide patients’ data security decisions throughout their experience with a tool such as umana. As healthcare organizations increasingly integrate personal data into their services and processes, they continuously encounter the challenges of compliance and the chances of a breach of private data. Unfortunately, the defense mechanisms are often added on to existing structures as an after-thought, or in some cases, ignored altogether despite the fact that they should be embedded into the foundation of the system.

As an eHealth platform, umana aims to connect service providers, such as doctors or pharmacists, with their patients. The solution will allow for appointment booking, direct messaging, medication plans and, in the future, Swiss EPD – all regulated via one access point. For patients, umana will allow them to book appointments and share vital parameters and personal information with doctors through web and smartphone applications. Thanks to Pryv, this transparent exchange of private information will be compliant with GDPR and Swiss DPA regulations.

About umana

umana is a new Swiss health platform that offers products and services for patients and doctors. As an international team of family doctors and engineers, we have used our expertise and creativity to reduce and optimize the wait time before a patient meets with their healthcare provider. The booking tool can be easily integrated into any practice and makes consultations more streamlined and more pleasant for patients. At umana, we harness the power of digitalization to create comprehensive, relevant and personalized health services.

www.umana.ch 1 min video of umana

About Pryv

Pryv makes health personal data processing as secure and trustworthy as online banking. We help organizations manage personal data from creation through use and sharing, as well as address the enhanced data subject rights under GDPR such as transparency, portability and right-to-be-forgotten.  Our solution, pryv.io is an extensible personal data lifecycle management platform specifically engineered to empower developers to rapidly create and scale breakthrough GDPR and HIPAA compliant products, services and experiences. The software has been developed to accommodate rapid integration. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing the most stringent data protection requirements.

pryv.gihub.io/www

The post Swiss-made eHealth tool umana selects pryv.io to ensure the privacy of patient-doctor communication   appeared first on Pryv.

• Spreading Adoption of Telehealth Solutions
• Fostering eConsent Acceptance
• Leveraging Real World Evidence Data
• Reporting Patient Outcomes

Swiss-made Pryv.io is a ready-to-use personal data lifecycle management software, specifically engineered to empower CRO and Pharma organizations to design and run decentralized, remote and direct-to-patient clinical trials.

• Trials are executed through tele-healthcare, i.e. conducted remotely with participants staying at home.
• Patients can give their consent remotely (eConsent).
• Physician visits can be done remotely (telemedicine).
• Data can be captured remotely via digital biomarkers (medical devices, wearables, apps).
• Real-World Data can be captured (geolocation, environmental exposure such as temperature, sun, humidity, and allergens).
• Lifestyle data can be integrated (nutrition, sleep, stress…).
• Multi-centric clinical trials are conducted where data is stored in different locations.
• Full compliance is respected in terms of data lifecycle management, patient rights, user access control and audit.

“Our platform will not only capture patient data but will also give participants a view on their own trial dataset, sending a strong message of transparency and inclusivity, which can truly engage them.”

Pierre-Mikael Legris, CEO Pryv SA

The post Design your Remote and Decentralized Clinical Trials with Pryv.io  appeared first on Pryv.

Switzerland, Morges, 12 June 2019 – Pryv, the leading Swiss provider of privacy and personal data management software, and BGO Software, a Bulgaria-based leading software services and product development company, have announced the launch of an innovative eCRF solution to manage Real-World Data (RWD) and informed electronic consent (eConsent).

Designed to meet the requirements of GDPR and HIPAA regulations, the eCRF solution is based on Pryv.io middleware and BGO Software’s Metaforms software. Among the key functionalities of the solution is its ability to dynamically capture and store patients’ informed eConsent. To ensure trust and compliance, a full audit trail documenting interaction with the data is embedded in the solution.

The web-based form-building software allows researchers and clinicians to capture patients’ RWD and pave the way to useable insights . This data includes information from complex forms, questionnaires, voice input, wearable devices, mobile health (mHealth) apps, electronic patient-reported outcomes (ePRO), environment and more.

RWD is considered to be a major source of valuable information from patients in real-world conditions. Capturing RWD improves personalized patient care and enables more efficient scientific and clinical research. Additionally, this data makes it possible to monitor a patient’s safety and evaluate risk, demonstrate efficacy and effectiveness, gain market access and address the public’s growing interest in an efficient and sustainable healthcare system.

“Real-World Data is undoubtedly a valuable asset. However, creating and integrating dynamic forms and complying with regulations can be a very complex task and requires specific knowledge,” said Ivailo Ivanov, CTO of BGO Software. “Collaborating with Pryv adds an additional layer to the management of clinical data in our product Metaforms and ensures the patient’s data remains private. This is vital to ensuring they feel confident in sharing their data and giving us access to RWD.”

Though the software architecture of an mHealth application is important to ensuring the successful implementation and usage of the solution, this is only one part. A user-friendly design is more than just aesthetics. It plays a crucial role in the patient’s engagement, the operational efficiency, and the overall management of clinical data.

“A regulatory-compliant eCRF solution is one of the most common requests we receive from customers,” said Pierre-Mikael Legris, CEO of Pryv. “A user-friendly design is the key to collecting enriched RWD. By using BGO’s clinical data management experience and engineering know-how, we have been able to create an easy-to-use, modern and intuitive end-to-end solution that captures RWD and manages dynamic eConsent.”

The Pryv/BGO eCRF RWD solution can be accessed anywhere and can be customized to fit the needs and processes of any business or organization. Its functionalities benefit multicenter clinical trials. An API for third-party integrations has been made available to optimize data collection and real-time sharing. The solution is easily adopted and can be quickly launched – a transition to a paperless process is possible within a few weeks and the solution can be deployed on site or over the cloud.

Contact us to book eCRF / RWD platform demo 

About Pryv

Pryv helps organisations manage personal data from creation, use and sharing as well as address the enhanced data subject rights under GDPR such as transparency, portability and right-to-be-forgotten. Packaged for rapid integration, the software solution comes with a turnkey IoT connectivity, secure storage vault, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing most stringent data protection requirements.

About BGO

BGO designs and develops solutions that help and support a number of governmental institutions, enterprises and IT organizations globally and has considerable expertise, primarily in healthcare, pharmaceutical and the clinical research industry. The company facilitates the work of, researchers, clinicians, CROs, biotechnology experts, trial managers, trial investigators, coordinators and other industry administrative professionals. BGO Software is an official Microsoft Gold Partner, Specialized supplier for manufacturing of IT of Hoffmann-La Roche and Genentech, Official Government Supplier for the Health Research Authority of the Department of Health in the United Kingdom &  Progress Premier Partner.

The post Pryv and BGO launch privacy-centric eCRF solution allowing to capture patient’s RWD and Informed Consent appeared first on Pryv.

Au-delà d’être une simple contrainte légale, le RGPD, le Règlement général sur la protection des données, apporte un contexte à la donnée privée. « L’entreprise qui collecte des données personnelles doit désormais répondre à ces questions : quelles données avez-vous sur moi ? Ai-je consenti à vous les donner ? Si oui, quand ? Les avez-vous partagées et ai-je donné mon consentement pour ce partage ? Pourtant, loin d’être un frein, le RGPD met en place un cadre à la collecte de données à vocation médicale ». De la même façon qu’un compteur électrique intelligent peut analyser vos consommations et en déduire vos habitudes alimentaires (utilisation de plaques ou d’un micro-ondes par exemple), l’usage d’un store électrique peut informer sur le sommeil d’une personne.

Créée en 2012, Pryv, société indépendante qui œuvre dans le domaine de la santé numérique, développe un logiciel permettant de répondre aux besoins technologiques de la télémédecine et de la e-Santé, au cadre réglementaire du RGPD, ainsi qu’aux contraintes internationales, voire très locales comme le comité d’éthique d’un hôpital peut le demander. « Notre solution est utilisée pour développer des services mettant en œuvre des applications mobiles ou des appareils connectés, elle accélère le travail de nos clients et permet de travailler sur des fondations robustes, de leur phase de prototypage jusqu’à la mise à disposition sur le marché auprès de millions de personnes. » Les risques ? Premièrement, ce serait de ne pas exploiter la donnée alors qu’elle a beaucoup de valeur aussi bien pour l’individu, la médecine que pour la société entière. Deuxièmement, ce serait de mal l’exploiter, par exemple en biaisant le consentement ou en anonymisant les données, ce qui fait perdre le lien avec le patient. Enfin , les risques liés à la sécurité, le vol de données ou encore le piratage, existent.

En essor, Pryv poursuit son développement tout en nouant des partenariats avec des hébergeurs de données de santé (HDS), des sociétés de conseil en RGPD, et des sociétés qui développent des logiciels pour des clients tiers. « Notre ambition ? C’est apporter à nos clients tous les outils nécessaires pour devenir tiers de confiance dans la gestion de la vie privée de leurs clients. Leur enjeu est, à l’instar des banques qui doivent gérer l’argent selon la volonté de leurs clients, de gérer les données de l’individu selon sa volonté » conclut Pierre-Mikael Legris.

https://bfmbusiness.bfmtv.com/le-tete-a-tete-decideurs/pryv-le-rgpd-dans-le-secteur-de-la-sante-1718670.html

The post BFM BUSINESS: PRYV, le RGPD dans le secteur de la santé (donnée de santé) appeared first on Pryv.

• visualize how Pryv.io works,
• skip documentation reading,
• get your job done quicker!

Even more, Postman also lets you generate snippets of code that will help you further cut your overall integration time and costs while fasting your way to compliance.

The best part is that you don’t even need any programming skills to work with Postman.

So even your project manager, GDPR- or Data Protection Officer will be able to understand what we do.

Also, for those of you who are just curious to know more about our API, this is a good way to simply understand how Pryv works.

Download our newly created OpenAPI definition file & boost your way to privacy using our 5min tutorial!

Facilitate Pryv.io integration with Postman Video

More about Postman: here

The post Discover Pryv.io API and Facilitate Pryv.io integration with Postman appeared first on Pryv.

“High BloodPressure is a silent killer, it doesn’t hurt and  you do not feel it, until it is too late” says Dr. Thomas Guggi, Project and Technical Lead at Riva Digital.

At Pryv, we are honoured to support Riva Digital initiative at its mission to increase the health literacy of the Swiss society by providing a solid data management foundation to enable data collection, structure, storage and sharing.

The oBPM app is collaboratively developed by Pryv, CSEM, Altran within digitalswitzerland initiative.

The post Pryv, Altran and CSEM introduces Riva Digital oBPM Blood Pressure Monitoring app appeared first on Pryv.

The collaboration includes the development of an innovative clinical data management solution providing a comprehensive picture of each patient’s journey – one which combines patient reported outcome (PRO) data with clinical records collected by healthcare professionals. The platform is designed to meet the unique needs of the investigational research as well as the post approval market, including phase IV studies, registries and online medical communities.

“Patient relevant outcome measures are a proven necessity to assess the efficiency, effectiveness and personalization of clinical trials” said Samir Mechati, CEO at RodanoTech “It supplements existing clinical data, increases treatment adherence and provides important insight about how patients are doing between medical visits”.

The patient data set is expanding from the high-quality information collected in the clinical protocol to the more private data collated from wearables, mobile apps and in-home clinical devices. By streamlining the collection and integration of this dataset, the joint Pryv/RodanoTech solution ensures a real-time connection with the patient health – capturing insightful data measured and influenced outside the four walls of the clinical setting.

“Real time, real world data that can be captured in patients’ daily lives is a powerful tool to optimise clinical research” said Pierre-Mikael Legris CEO at Pryv “Our platform will not only capture patient data but will also give participants a view on their own trial dataset, sending a strong message of transparency and inclusivity which can turn them truly engaged”.

Patient consent is a critical process that has historically been highly inefficient and prone to error. The joint Pryv/RodanoTech platform optimises that additional level of security between participants and clinical trial sites. Its greatest value comes from its dynamic, fine-grained consent and re-consent capability which gives patients the trust, transparency and control they require from clinical trials. The platform logs all authorizations, including the ‘contract’ between the patient and the investigator, for compliance oversight as mandated by GCP guidelines and privacy regulations.

RodanoTech and Pryv offer tailored solutions to conduct projects of any size, from small Phase I studies to large scale trials involving sophisticated designs and long-term follow-up across clinical settings and geographies. Our Academic offer begins with a “get started” costing for proof of principles and goes to a premium packaged solution for large scale clinical trials.

Contact us to discover the power of a tailor-made platform combining clinical and patient health data and supported by leading experts with extensive experience in clinical development.

About Pryv
Pryv helps organisations manage personal data from creation, to use and sharing as well as address the enhanced data subject rights under GDPR such as transparency, portability and right-to-be-forgotten. Packaged for rapid integration, the software solution comes with a turnkey IoT connectivity, secure storage vault, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing most stringent data protection requirements.

About RodanoTech
RodanoTech is specialised in clinical data management services and electronic data capture solutions for industry and academic projects. The RODANO platform is the underlying proprietary technology that powers all RodanoTech solutions. RODANO is based on the most recent technical standards to streamline all aspects of the study conduct and complies with the latest recommendations regarding the use of computerized systems in clinical investigations (21 CFR Part 11). The platform can scale and adjust to accommodate clinical trial complexities through systematic automation of repeatable processes while providing appropriate hooks to new data collection methods.

The post Pryv and RodanoTech team up to optimise clinical research/trials with patient generated health data appeared first on Pryv.

HealthyHealth encourages healthy behavior through algorithms and research data predicting people’s risk for medical conditions based on their lifestyle data. By using their services, people can take better care of their health, employers can nurture a healthier workforce while insurers can better engage their customers, personalise their services (offer lower premiums) and reduce liabilities.

“Pryv gives us the required privacy rigour to build and maintain the trust critical for our continued success” says Etienne Bourdon, COO at HealthyHealth. “With an estimated 600’000 data points collected annually per person, we embedded a middleware technology that not only strengthens GDPR compliance but also scales our collection, use, and storage of lifestyle information.”

Connected health and P4 medicine (Predictive, Preventive, Personalised, Participatory) is a reality nowadays. Sensor technology, wearable devices and mobile apps are helping individuals monitor their health and alerting them to any early signs of illness. With lifestyle data, innovative players are developing value propositions that help insurers and businesses alike understand behavioural trends and score risk in a more granular way. Responsible P4 players are integrating privacy into their propositions to reinforce regulatory compliance, boost customer confidence and thereby increase engagement. Pryv.io streamlines compliance efforts and scales the process of collecting lifestyle data so that businesses can more efficiently perform risk calculations, offer personalised plans and optimise customer service.

“HealthyHealth is at the forefront of InsurTech innovation” says Pierre-Mikael Legris, CEO at Pryv.  “Our partnership exemplifies a strong technology collaboration that unlocks the value of lifestyle data with behavioural analytics and an unwavering commitment to data privacy, protection and GDPR compliance”

Pryv helps organisations manage personal data from creation, to use, to sharing and enhanced GDPR rights such as transparency, portability and right-to-be-forgotten. The API is capable of ingesting high-throughput IoT data at scale and with optimal storage density. Packaged for rapid integration, the software solution comes with a secure storage vault, encryption protocols, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing most stringent data protection requirements.

HealthyHealth.uk Ltd is a company specialised in assessing precise individual health risks, with the ability to predict percentage risks for more than 800 medical conditions, hospitalisation and mortality. Using this data, a second product focuses on preventing the detected health risks by transforming digital data collected into prevention opportunities with a daily personalised plan including nutrition recommendations, physical and mental exercises. HealthyHealth is working with several (re-)Insurers, Employers and Hospitals internationally with two products : a B2B risk API for medical risk evaluation, and a B2B2C mobile App for end-users preventing detected risks. For more information, please send them an email or visit HealthyHealth website.

The post HealthyHealth Selects Pryv to Strengthen GDPR Compliance and Unleash Collection of Lifestyle Data appeared first on Pryv.

This new partnership is set to benefit customers in Japan, Thailand and the Philippines with an IoT platform-as-a-service offering meeting the highest levels of data safety, privacy and user empowerment. Both companies share vision that privacy is not an obstacle to business innovation but a competitive advantage when implemented correctly. This partnership will broaden the availability of Pryv.io to customers in Asia Pacific and enhance the way they cope with sensitive data collection and utilization.

In a second phase, both companies intend to extend collaboration to Europe.

“Our partnership with Pryv aligns with our strategy to deliver best-of-breed IoT solutions that increase customer efficiency, productivity and quality of service” said Michiaki Satate, CEO at Interpolation. “Along our extensive experience in IoT and End-to-end solutions, we capitalize on Pryv’s expertise in data protection to design solutions that make the most of IoT connectivity while addressing markets’ strict regulation compliance, interoperability needs, and privacy concerns”

Businesses on the leading edge of data collection and usage are realizing that they will not be able to continue their existing business model without protecting consumers’ privacy. As data privacy increases in importance in Asia, Interpolation saw an opportunity to partner with one of the most rigorous privacy & data protection solution provider to deploy a platform where connectivity, secure personal data storage, consent management and compliance software is combined to offer businesses a comprehensive managed privacy service that improve transparency and user control regarding data privacy.

“We are pleased to welcome Interpolation to our partner network,” said Pierre-Mikael Legris, CEO at Pryv “The partnership capitalizes on the unique strengths of each entity; Pryv brings the power of its rigorous Privacy software capability to one of the most established and well respected IoT technology solutions providers in Asia Pacific; Intepolation complements this by bringing the benefits of its expert services and long-term relationships with customers in Asia to Pryv.”

In its initial phase, the partnership will address the privacy and IoT connectivity imperatives in Industrial and healthcare sectors where service providers are looking at keeping up with evolving regulations and protecting data privacy.

=====

Pryv is an independent software vendor, originating from the Swiss Federal institute of technology in Lausanne (EPFL), an environment well known for its ability to create thriving innovations and deliver on the Swiss values of quality, precision and reliability. The company helps organizations manage personal data from creation, to use, to sharing and enhanced rights such as transparency, portability and right-to-be-forgotten. Packaged for rapid integration, the software solution comes with turnkey IoT connectivity, secure storage vault, encryption protocols, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing most stringent data protection requirements.

Contact: business@pryv.com

Interpolation’s corporate mission is to develop IIoT Solutions (Industrial Internet of Things Solutions) dedicated to infrastructures across the Globe with advanced IoT technologies. Interpolation’s Platform-as-a-Service enables Users to Manage Network/Sensor on various communication protocols, Visualize and Manage Storage in a single interface.

Visit NOCXX website or Interpolation website. 

Contact Europe: jlerrant@inter-polation.com

The post Pryv and Interpolation join forces to deliver a unique Privacy-as-a-Service offering to Asian Markets appeared first on Pryv.

Lausanne, June 26th, 2018 — Pryv, the leading provider of privacy and personal data management software, today announced a partnership with Net4all which will give Swiss startups and SMEs access to a secure, compliant and fully managed cloud hosting solution for Pryv.io. This partnership will ensure that sensitive personal data is duly managed thru its lifecycle and kept completely secure under the stringent standards of the Swiss LDP and GDPR legislation. Net4All, one of the top hosting providers in Switzerland, is specialized in Web Hosting, Managed Services and Cyber Security for information systems and digital platforms. The company is ISO 27001 compliant.

“With Pryv.io on a managed cloud, customers get up and running quickly, with enterprise class operational support and proactive monitoring” says Anthony Gerard, CEO at Net4all.

“This way, in-house SME teams can focus on innovation and getting out to market quickly while Pryv and Net4all deliver core privacy functionalities as a service”

Managing privacy can be a costly capital expense that requires skilled resources to operate and maintain business applications in a secure and reliable manner. By hosting Pryv.io within Net4all world-class data centers and leveraging their expert management services, startups and SMEs gets the best of both worlds – rigorous privacy preserving capability at reduced operational costs, greater performance and reliability.

“Today, we are seeing more than three-quarters of startup customers ask about managed cloud hosting” says Pierre-Mikael Legris, CEO at Pryv. “As that deployment model becomes the norm, we are now ready to enable our customers to move to the cloud with confidence, fast, and leveraging the highest standards of reliability, security, and scalability.”

Through this trusted partnership, hosted customers receive the following benefits:

• A secure hosted environment that best suits their needs, with 24/7/365 support
• Full ownership of the data and retention of the software rights
• Custom tailored backup and data retention policy
• Ability to customize their application and still remain in the cloud
• Receive software updates and services packs at no additional charge.  

Net4all and Pryv will offer four managed hosting packages with varied levels of support, beginning from a “get started” offering for POCs to a premium Platinum Package for large scale, mission critical environments. The Pryv and Net4all team will sit down with you for consultation to assess your needs and the level of support needed.  

The post Pryv partners with Net4all to launch a managed hosting solution for privacy and personal data management appeared first on Pryv.

Lausanne, June. 15, 2018 — Pryv, the leading provider of privacy and personal data management software, announces that it has signed a partnership agreement with Altran, the leader in Engineering and R&D services empowering the next generation of healthcare evolution.

This partnership puts the patients at the heart of MedTech innovation and protects their privacy complying the most stringent data regulations with Altran acting as an end-to-end R&D engineering partner developing smart, patient-centric and compliant medical devices. Pryv brings trust, transparency and control over the use of sensitive medical data.

“Medtech companies operate in one of world’s most regulated environments, and scrutiny and complexity are only increasing” says Andreas Kuhn, CTO at Altran Switzerland. “Pryv extends our regulatory expertise with a rigorous data protection capability that accelerate time to compliance and enable privacy-preserving design from the outset of product development”

Altran and Pryv teamed up to enable Riva Digital, a Swiss eHealth initiative tackling the problem of hypertension in Switzerland.

The initiative encourages citizens to maintain healthy lifestyle behaviors and instantly keep tab on their blood pressure level right from their smartphone.

The medical-grade monitoring app builds on a breakthrough optical blood pressure monitoring method from the Swiss Center for Electronics and Microtechnology (CSEM), App development and integration from Altran and rigorous privacy and personal data management capability from Pryv. 

Riva digital bets that one year from now 100,000 people will have demonstrably lowered their blood pressure.

Pryv helps organisations manage personal data from creation, to use, to sharing and enhanced rights such as portability and right-to-be-forgotten. Packaged for rapid integration, the software solution comes with a secure storage vault, encryption protocols, fine-grained consent management and comprehensive auditing capability that radically cut IT development costs and accelerate time-to-benefit while addressing most stringent data protection requirements.

Altran ranks as the undisputed global leader in Engineering and R&D services (ER&D), following its acquisition of Aricent. The company offers clients an unmatched value proposition to address their transformation and innovation needs. Altran works alongside its clients, from initial concept through industrialization, to invent the products and services of tomorrow. For over 30 years, the company has provided expertise in aerospace, automotive, defense, energy, finance, life sciences, railway and telecommunications The Altran Group generated revenues of €2.9 billion in 2017, with some 45,000 employees in more than 30 countries.

The post Altran Switzerland and Pryv join forces to give Life sciences customers a GDPR-proof path to connected health applications appeared first on Pryv.

Pryv.io helps organizations manage personal and health data from creation, to storage, use and sharing.

Our software comes with:

• A secure storage vault
• Dynamic consent management
• Complete auditing capability

We:

• manage personal data from creation, to use, to sharing, archival and deletion.
• enable response to current and forthcoming privacy and data protection regulations
• accelerate time to market and reduce development cost of innovation

So customer can:

• stay focused on their core business and innovation course
• create value on top of a solid foundation of privacy and data protection
• turn compliance investments into a differentiating advantage.

The post Meet pryv.io, win with privacy and ensure GDPR compliance. appeared first on Pryv.

“One of the key challenges of IoT data streams is to handle high volumes of data with fast connectivity without compromising on security.” says Stephan Bachofen, VP Software at Biovotion AG. “Pryv’s high throughput data ingestion will allow medical trackers to cope with future large volumes of telemetry data overcoming surges with guaranteed low-latency at affordable costs.”

The Healthcare industry remains among the fastest to adopt the Internet of Things.

Integrating IoT features into medical devices greatly improves the quality and effectiveness of service, bringing especially high value for the elderly people, patients with chronic conditions, and those requiring constant supervision. According to market estimates, spending on the Healthcare IoT solutions will reach 1 trillion Swiss francs by 2025 and will set the stage for highly personalised, accessible and on-time Healthcare services for everyone. Organisations need to ensure that future data conduits are powerful enough to handle and process the predicted throughput and increase in telemetry data, yet stay flexible enough to react to changing business needs.

Pryv provides a future-proof, device-ready privacy management solution handling personal data thru its lifecycle. IoT data arrives in the form of a continuous telemetric stream, is rapidly ingested, processed for authorisation and then optimally compressed in Pryv’s personal data vault for sharing and analysis.

Pryv’s purpose-built API is designed to ingest different types of high frequency data streams concurrently and efficiently.

Benchmarks performed on the beta release show notable improvements in throughput and storage density. On moderate virtualised hardware (4 cores, 14 GB RAM, 5000 IOPS), Pryv.io High Frequency stores 100’000 measures per second at approximately one byte per measure. The new release uses several advanced data compression algorithms to optimise disk usage. With an average IoT device capturing 20 sensor values every second, a single 4 cores  Pryv.io machine is able to store the data produced by 2000  concurrent devices. In a standard deployment, multiple machines would be receiving the telemetric streams in parallel.

Pryv helps organisations manage personal data from creation, to use, to sharing, archival and deletion. The High Frequency release is appropriate for health applications that require near real-time experience such as in physiology monitoring, critical home care services or point-of-care diagnostic. Our adaptive privacy out-of-box solution comes integrated with a secure storage vault, fine-grained consent management and comprehensive auditing capability that radically accelerate time-to-benefit while addressing most stringent data protection requirements.

The post Pryv Unleashes IoT Connectivity with High Throughput Data Ingestion appeared first on Pryv.

Seniors are more susceptible to chronic conditions, which necessitate long-term treatments and numerous check-ups. The negative impact this has on patients’ quality of life can be alleviated by collaborations between caring institutions, ICT companies and researchers.

• How can we encourage and fast-track these collaborations?
• What are the key elements to ensure their funding and success?
• What is the best-fitting business model?

Understanding the needs of the ageing population can prove challenging, as older people are not usually the focus of marketing studies.

However, the development of Big Data analysis, the Internet of Things and Artificial Intelligence could provide researchers and innovators with meaningful information about the needs of seniors and their use of healthy ageing products.

Covering the needs and demands of seniors over 50, the Silver Economy covers many products and services using very different technologies, including home automation, sensors and connected objects.

How to sponsor the design of such a system?

Let’s learn together and explore further the specialised venture emerging in healthy ageing?

The post Hot topic discussed in Nice: Pierre-Mikael shares our vision how to move “From needs to ideas”, “From ideas to innovation” and “From innovation to market”. appeared first on Pryv.

CHF 400’000 for Pryv

The Foundation for Technological Innovation (FIT) has granted an early loan of CHF 400’000 to the EPFL startup Pryv and its innovative eHealth and personal data management solution. early loans target young companies in phase of commercial development and looking for funds with private investors. Companies need to be based in the Canton of Vaud. With this new loan, which adds up to the 195 other loans given to innovative projects since 1994, the FIT carries on its mission to support technologically advanced startups in western Switzerland. Other condition, the selected projects need to have a collaboration with a university or a School of higher education in western Switzerland.

Pryv: Compliant and comprehensive management of personal and health data in the digital era

The digital revolution has hit many domains today, some of which are still very sensitive in terms of security and privacy, such as in healthcare. This is why eHealth, which combines life science, medicine and IT technologies, needs more secure and efficient patient data management solutions. The revolution is on thanks to the EPFL startup Pryv. It developed a software with a novel data model and dynamic consent management that ensures the availability as well as the compliant usage of sensitive data. It enables health actors (such as pharma, hospitals or insurances) to deploy their own data management systems fast, and ensure that all applicable industry and data privacy regulations are respected. Other revolution: the digital solution of Pryv puts the patient at the center of the system, where he or she can manage his or her own personal data bank.

Standing for privacy, Pryv and its product Pryv.io should see the birth and the growth of interdisciplinary and cross-borders projects, where sensitive, health and personal data will be collected, stored and shared without confidentiality threats, with the control of patients. Today at a crucial phase of its development, Pryv was able to confirm its commercial model introduced in 2015, validated and based on years of firsthand research, market analysis and product development, which started in 2012. The startup raised CHF 1.1 million in October 2017. The CHF 400’000 worth early loan from the FIT will help the young company grow steadily as well as secure treasury for the delivery of important orders in a field where sales cycles are rather long, before the next planned financing round in series A.

Contact: Pierre-Mikael Legris, CEO Pryv | office@pryv.com

About the FIT

Created in 1994, the Foundation for Technological Innovation has financed innovative technological projects and startups with 30 million Swiss francs of loans and grants, in total. It provided 195 loans to 161 innovative companies, out of which 150 are still in activity today. These companies have created more than 1000 jobs in total. Innovaud, promoting innovation in the Canton of Vaud, closely collaborates with the FIT in the projects’ pre-selection process, as well as by providing support to the projects’ teams.

Julien Guex | FIT Secretary General | julien.guex@fondation-fit.ch | 021 613 36 34
www.fondation-fit.ch

Download the PR release EN FR

The post Pryv receives 400’000 CHF from the Foundation for Technological Innovation (FIT) appeared first on Pryv.

“One of the main technology barrier for providing patient-centered healthcare is the problem that patient data is often housed in a number of disparate systems across multiple locations” says Professor Michael Schumacher. “We joined forces with Pryv to include rich semantics in the data model and automate the import of datasets to close communication gaps.”

Semantization provides interoperability at the highest level in the electronic exchange of patient information among caregivers and other authorized parties. This improves quality, safety, efficiency and efficacy of healthcare delivery. When correctly implemented, EHR interoperability ensures that providers understand the patient as an individual with a medical history and network. Its objective is to address the challenges of how healthcare systems inform various stakeholders involved in a patient’s care as well as how organizational facets of health information exchange will coordinate together for the benefit of patients.

“The inclusion of rich semantics into Pryv.io goes beyond the traditional tagging and key word classification” says Pierre-Mikael Legris, CEO of Pryv. “The eHealth unit of HES-SO Valais-Wallis is helping us to incorporate algorithms from machine learning and rule inferencing that can progressively learn the type and variety of data, and propose/assign explicit semantics as it flows through our software.”

Alongside of the R&D collaboration, HES-SO Valais Wallis is making the Pryv.io personal data management platform available to its 2’500 students and staff members. The environment is designed to accelerate digital health innovation and enable eHealth research projects such as an m-health self-monitoring solution for patients undergoing physiotherapy treatments.

About Pryv

Pryv makes essential software for data-driven healthcare innovation. Our purpose-built middleware helps organizations manage personal data from creation to use, sharing and disposal. We accelerate time to market, cut IT development costs and speed up connectivity to all data sources. Pryv addresses the enhanced citizen’s right under GDPR and turns privacy compliance into a competitive advantage. For more information: pryv.com

About the eHealth unit of the Institute Information Systems HES-SO Valais-Wallis

The eHealth unit is part of the Institute of Information Systems of the University of Applied Sciences and Arts Western Switzerland (HES-SO). Based in Sierre (Valais, Switzerland), the eHealth unit undertakes applied research in close collaboration with public or private companies and institutions. It has gained solid experience with complex interdisciplinary projects related to digital health, at national and international levels. The eHealth unit has for instance invested many research efforts in the development of sensor-based mHealth applications for chronic diseases (e.g. diabetes type 1 and 2). Furthermore, the unit has developed expertise in health record data interchange and the usage of standards (HL7, FHIR), as well as the development of privacy and anonymity preserving algorithms for health data exchange (Nano-Tera.ch ISyPeM2 project). It is also working on blockchain-based healthcare data management and on a prototype of a framework for managing and sharing EMR data for cancer patient care. It is investing many efforts in personalized health support, such as for coaching in physiotherapy, or smoking cessation programs run on social networks with chatbot supports.

The post Pryv and HES-SO team up to extend HL7 FHIR data exchange with semantic interoperability appeared first on Pryv.

Privacy is essential part for any industry digitalization. Today, compliance is a must have.

On the December 19, 2017, the “EPFL”, “Digital Switzerland” and “Le Réseau” organize Cyber Security Day to look at the cyber attackers who continue to evolve, improving their tactics, techniques and procedures faster than security teams can keep up.

The event focuses on what Switzerland needs to improve their cyber intelligence and response capabilities to solve the security and privacy challenges.

Pryv will outline privacy compliance is not a challenge, but a true opportunity. The success key is to enable data availability through transparency, awareness and trust… Meet us to tell you more how pryv.io privacy-by-design data management layer made this simple.

Learn more about the event: https://cybersecurityday.ch/

The post Join us at Cyber Security Day in Lausanne / 19.12.2017 appeared first on Pryv.

Cybernetica AS, a leading information security company and Pryv SA, a Swiss expert and provider of privacy and data management solutions, today announced the result of their joint research and collaboration started earlier in 2017. The availability of an integration between the two technologies showcase how to perform a controlled safe analysis of personal data in a complex and highly regulated environment, such as the healthcare industry.

The proposed privacy-by- design solution resolves the challenge of medical data sharing , including integrated compliance with complex regulations and re-using shared sensitive personal data.

“We want to provide the best privacy for the users and the best utility for data collectors. Together, Pryv and Sharemind provide a

healthcare data solution that gives users control over their data and secures the analysis and re-use of collected databases.“ stated the

management teams of Pryv SA and Cybernetica AS.

The Swiss-made technology of Pryv, pryv.io provides a scalable platform for handling sensitive data in a compliant way. Pryv.io’s unique data ontology helps app developers build healthcare apps by making consent management segmentation understandable to both patients and data users. Sharemind, one of the latest breakthroughs from Cybernetica’s R&D team, is an application server that processes information without seeing a single value. Apps running on Sharemind collect data in encrypted form and analyse them without removing the protection. Sharemind computes analysis results directly in an encrypted form and returns them to the analyst who can decrypt them.

The first two proof-of- concept for the business application of the combined technologies are “using mobile phone location data in lifestyle analysis” and “researching relations of nutrition and diabetes”.

The cooperation between the two companies and the validation of the technology match validates that the combination of two can solve multiple challenges for the data research, medtech, pharma and insurance sectors by enabling them to perform a controlled safe analysis of personal data, without breaking the industry regulations, privacy laws and rights of individuals.

About Cybernetica:

Cybernetica’s e-Government security solutions are deployed in Europe, Africa and the Americas with 20 years of experience in developing security solutions for the information society and bringing cryptographic research to practice since 1997.

About Pryv SA:

Pryv SA is an independent Swiss SME founded in 2012 with the mission to promote, develop and implement Health IT patient-centric solutions across the healthcare industry. Pryv develop and sell licenses of a trusted Swiss-made and validated eHealth Data Middleware to empower Pharma, Hospitals/ Clinics, Medtech, Digital Health and Insurances organizations to build compliant, innovative and scalable data-driven eHealth products with confidence while respecting Data Privacy Regulations.

Contact Pryv:

Evelina Georgieva

Innovation Park Building D, EPFL

1015 Lausanne

Switzerland

press@pryv.com

Contact Cybernetica AS:

Dan Bogdanov

Head of the Department of Privacy Technologies

Mäealuse 2/1

Tallinn

12618 Estonia

sharemind@cyber.ee

The post Cybernetica AS and Pryv SA combine innovations to bring to the market a solution for a controlled safe analysis of personal data in highly regulated sectors appeared first on Pryv.

Pryv SA, an independent Swiss Health-IT company, specialized in providing innovative data management and digital privacy solutions, is proud to announce the capitalization of CHF 1.1M from two former and two new investors. This amount will be used to consolidate the company’s operations. Now, Pryv SA launches its Series A “Growth” funding round which is expected to be closed by Q1 2018.

Pierre-Mikael Legris Pryv’s CEO declares “ I am proud to have the trust of investors who share our vision on the importance of data privacy and compliance being an enabler of confidence and innovation. This rewards Pryv’s team efforts to develop and put on international markets the first privacy-by-design foundation solution. Nations and firms are taking privacy seriously and elaborate laws and rules protecting the individuals. This creates the needs for the industry to have enablers to pursue innovation in regulated environment. We will leverage on this funding to focus on our path to be the Standard for data privacy management.”

The round was led by Cosa Trade SA, a Swiss company with a wide-spectrum interest in SMEs, which are shaping out the future. “ We decided to invest in Pryv SA in first place because of the high quality of the full-skilled team’s expertise and the potential offered by the solutions developed by the company. The effortless integration of Pryv middleware and its proven adaptability to the customer’s’ environment have led Cosa Trade to take part in this exciting activity, especially in an era of increasing pressure coming from the Regulatory Authorities.

Cosa Trade SA, teams and resources will support Pryv SA in the deployment of its offering to all customers willing to embed quickly data compliance thanks to Pryv SA” said the management team of Cosa Trade.

Pryv SA has already established and collaborates with Innovation and R&D departments of Public and Private Institutions, including organizations from the Healthcare, Life-Science and Insurance Sectors. Pryv’s data and privacy management solution is used by them under commercial licensing agreements to develop data and user-centric solutions, such as Connected Medical Devices and Solutions for Continuum of Care and early detection of diseases, mHealth prevention platforms, Dynamic RWE Clinical Trials. The current round will enhance and scale-up the growth of the company.

About Pryv SA

Pryv SA, created 2012, is an independent Swiss Health-IT company, specialized in enabling sensitive, health and personal data management in cross-border and cross-industry global projects.

Pryv stands for privacy. At Pryv, “privacy” means the ability for anyone to collect and share personal information with awareness. The company developed a state-of-the-art software to address challenges still remaining to be solved, such regulatory threats; data privacy, interoperability and access rights management. To solve the challenges of data interoperability, contextualization and ownership, Pryv created a simple and powerful data model, which is open to facilitate integrations. Combined with the privacy-by-design approach, it allows 3rd parties, such as Healthcare, Insurance and Life Science organizations to use it as a foundation to build scalable patient- or individual-centric solutions.

The post Pryv SA closes 1.1M CHF Pre-Series A to accelerate growth and prepare Series A funding round. appeared first on Pryv.

We’d be pleased to share with you how these trends and threads can be turned into opportunities and better outcomes.

The post Meet us during the Swiss eHealth Summit in Lausanne on the 21st-22nd of September appeared first on Pryv.

Pryv and Nothing Interactive announces a strategic partnership earlier in June. The fully Swiss-made solution will allow insurances to increase user engagement, reduce costs and improve risk profiling. The customisable solution, a mHealth platform to track and understand health care data from different sources, is ready to be easy adopted and customized by an insurance to meet their needs.

One of the biggest advantages is that the solution is fully compliant with global regulations, including GDPR, HIPAA and national laws.

For the first time, the solution will be presented by Alexandre Margot, representing Nothing Interactive and Pryv during the Insurance IoT Summit Europe in London on June, 26th-27th.

Stay tuned.

The post Pryv and Nothing Interactive presents their Insurance mHealth platfrom at the Insurance IoT Summit Europe appeared first on Pryv.

After the recent cooperation with Pistoia Alliance where Pryv joins to lower the barriers of adopting innovation in life sciences research and development, the company enters in a new strategic partnership with Nothing Interactive.

Pryv and Nothing Interactive team up to launch an innovative Swiss service that allows insurances to collect data of all their customer’s sources (Misfit, Withings and any other wearables, health apps, etc.) and make sense of them using one single platform. The platform will be a fully customizable mHealth (“mobile health”) platform that enables insurances and/or their customers to better understand their data. Data is stored securely in Switzerland, following all EU and CH data protection regulations.

Pryv addresses the IT, Legal and Data challenges by providing the Life Science and Health industries a technology solution that enables data collection and standardization, storage and distribution, while allowing different and multi-algorithms to be used to identify patterns and outcomes. (Pryv eHealth Middleware, pryv.io)

The company’s vision for success is based on establishing collaborative partnerships for sustainable adoption of eHealth, mHealth, real-world data in cross-industry sectors, preserving data privacy and security.

Pryv enters a growth phase and plans to expand to new markets, targeting primarily Asia-Pacific Area, Canada and US. Philippe Rey from L’Agefi writes about the company’s achievement and next milestones in L’Agefi edition on June, 6th, 2017.

About Pryv SA

Pryv SA is a Swiss independent SME founded in 2012, with the mission to promote, develop and implement Health IT patient-centric solutions across the healthcare industry. Pryv SA develops and sells licenses of a trusted Swiss-made and validated eHealth Data Middleware to empower Pharma, Hospital/ Clinic, Medtech, Digital Health and Insurance organisations to build compliant, innovative and scalable data-driven eHealth products with confidence, reduced time and IT expenses while respecting complex Data Privacy Regulations.

Source of information and Photo credits: Philippe Rey, L’Agefi

https://www.agefi.com/quotidien-agefi/une/detail/edition/2017-06-06/article/sante-un-accord-determinant-est-conclu-avec-lentreprise-bernoise-nothing-interactive-455034.html

The post Engaged in strategic partnerships, Pryv reaches new heights appeared first on Pryv.

Contact us for details and be ready to send us your views on integrating Pryv’s backend into your customer’s platform solutions.

contact@pryv.com

The post Resellers WANTED appeared first on Pryv.

Positioning itself as the next industry standard for personal and real-world data standard, Pryv is looking forward to participating in the Pistoia Alliance Community to promote collaboration as many organisations would benefit significantly from industry-wide pre-competitive collaboration.

Still, one of the biggest challenges the industry has, is transforming the growing number of collected data sets into meaningful insights via developing and implementing machine and deep learning systems.

Pryv addresses this challenge by providing the industry with a technology solution that enables data collection and standardization, storage and distribution, while allowing different and multi-algorithms to be used to identify patterns and outcomes.

Used as a foundation of R&D products development, Pryv eHealth Middleware technology ensures fast access to data and its compliant usage cross-borders. Easy access to acquiring real-world data, designing real-world data platforms and delivering real-world evidence, while ensuring the data is managed properly: preserving data privacy and security first is the promise Pryv brings to the wider Life Science community.

Benefiting from the ready-to-be used Middleware solution of Pryv, Pharmaceutical and Life Science companies can focus now primarily on their research and deliver real benefits to patients while being sure the data management is done right under their control.

The blockchain technology Pryv developed, and implemented in its Middleware is used to validate data set genuineness through its full life-cycle and provide a data trail audit, while the unique data ontology allows for granular data distribution to each stakeholder respecting Ethical, Legal and Clinical Data Requirements.

About Pryv

Pryv is an independent Swiss SME founded in 2012 with the mission to promote, develop and implement Health IT patient-centric solutions across the healthcare industry.Pryv developed and sell licenses of a trusted Swiss-made and validated eHealth Data Middleware to empower Pharmas, Hospitals/ Clinics, Medtech, Digital Health, Insurances to build compliant, innovative and scalable data-driven eHealth products with confidence, reduced time and IT expenses while respecting complex Data Privacy Regulations.

About The Pistoia Alliance:

The Pistoia Alliance is a global, not-for-profit members’ organisation made up of life science companies, technology and service providers, publishers, and academic groups working to lower barriers to innovation in life science and healthcare R&D. It was conceived in 2007 and incorporated in 2009 by representatives of AstraZeneca, GSK, Novartis and Pfizer who met at a conference in Pistoia, Italy. Its projects transform R&D through pre-competitive collaboration. It overcomes common R&D obstacles by identifying the root causes, developing standards and best practices, sharing pre-competitive data and knowledge, and implementing technology pilots. There are currently over 80 member companies; members collaborate on projects that generate significant value for the worldwide life sciences R&D community, using the Pistoia Alliance’s proven framework for open innovation.

Media Contacts:

Evelina Georgieva

Pryv SA

École Polytechnique Fédérale de Lausanne,

Innovation Park Building D,

1015 Lausanne

Switzerland

Contact@pryv.com

The post Pryv joins The Pistoia Alliance to lower the barriers of adopting innovation in life sciences research and development appeared first on Pryv.

period, starting May/June 2017.

Sales: you will present our solutions and get enquiries, answer to client request for proposal, prepare proposals and close deals.

Tech Sales Support: you will follow-up sales process and after sales with the IT Team of our customers,

Pryv is a dynamic, EHealth company based at the EPFL Innovation Park in Lausanne.

Job descriptions

Sales: You work closely together with our sales manager and business development manager to generate new leads in Life Sciences, Insurtech and Telco Industries.

Tech Sales Support: You work closely with our CTO, our product manager and sales team to support the sales process and solution deployment.

Sales Tasks

• Market opportunities profiling.
• New projects and customers acquisition.
• Telephone and face-to-face call pre-sales role: you will support our Managers by creating and converting potential sales leads into meeting opportunities.
• Preparing quotations and proposals
• Close deals

Sales Tech Support Tasks

• Provide timely technology support and problem resolution to Pryv clients. 
• Provide support by phone, email, and on site (software utilisation, user account creation and maintenance, etc.)
• Interact with clients to provide guidance, assistance, and follow up. 
• Train customers.

What do we expect from you?

Bachelor/Master in Business, Commercial Economics or a related discipline Bachelor/Master in Information Technology or a related discipline

• You are fluent in at least two of the following languages: French, English, German (written and verbal), with communication skills.
• You are interested in the Ehealth ecosystem.
• Sales, you have an affinity for IT.
• Tech, you have an affinity for customer services.

Contact: salesjob@pryv.com

The post We’re hiring Sales @pryv! Have IT knowledge & customer skills? Apply now. appeared first on Pryv.

Having achieved significant health and social outcomes he has proofed the real-world data coming from the patient-side is crucial for his medical treatments. As a software engineer he decided to give the opportunity other patients be empowered as he was.

Today, Pryv SA is established as a company headquartered in Switzerland, but solving global challenges in the changing healthcare industry where the personal, social and environmental data contextualization with the medical and clinical datasets and information, is more valuable than gold.

The personalized medicine and treatments are not anymore a dream, but a clear vision for the industry to achieve benefits for all. Headed by Pierre-Mikael, since 2014 Pryv cooperates with Hospitals, Pharma, Medtech, Biotech and InsurTech industries and positions itself as the technology enabler for the development of next generation, patient-centric and data-driven healthcare products.

Join him in Barcelona during the Health 2.0 Conference 2017 from 3rd to 5th of May where more than 600 international digital health stakeholders and decision-makers will meet to build thought-provoking panels, provide lots of rapid-fire LIVE technology demos and perform high-level quality networking.

The post Pryv CEO, Pierre-Mikael Legris, shares what it is to be an empowered patient appeared first on Pryv.

“The Venture Leaders Technology program is beneficial for the further development of our company since it supports our growth by:

• Providing us an access to an international network;
• Opening doors to other entrepreneurs with whom to exchange experience;
• Giving a direct access to measure existing technology gaps and opportunities within Silicon Valley and beyond;
• Allowing us to evaluate in practice tactics for winning value-based partnerships with local Key Opinion and Market Leaders;
• Providing opportunities for acquiring new customers by leveraging on their buying behavior of innovative high-technology products. ” completes Evelina.

From March 27th to April 1st, 2017, 10 innovative Swiss startups will go international with the venture leaders Technology in Silicon Valley, as part of the Swiss National Startup Team.

The full interview is accessible here

Photo credits: pepshot.com / venturelab

The post Pryv goes international with the support of the Swiss Venture Leaders Technology Program. First stop: Silicon Valley, US appeared first on Pryv.

This award fits perfectly the execution of Pryv Growth Strategy.

Founded in 2012, Pryv already developed, validated and commercialized its product, pryv.io, which is used by Medtech, Pharma, Insurances and Hospitals for the development of data-driven innovative products.

Digital Technologies are changing the landscape of Healthcare and the market shows exponential growth with opportunities for Pryv to internationalize and scale-up in different markets.

Ilia Kebets, Product Manager at Pryv, explains that the decision for collaboration with Microsoft came on first place because “Having a deployment running on Azure globally distributed data centres, is definitely a great show-case of Pryv.io capacity which enables Pryv customers to use a single provider for developing various products which can be operated in more than 34 regions around the world”.

Pryv’s technology key advantage is the compatibility to meet very diverse IT, ethical and legal requirements for personal, sensitive, medical and clinical data management.

Targeting the healthcare sector, Pryv’s focus is solving technology diversification, approaching the IT and Regulatory requirements associated with sensitive, health and private data collection and management while respecting local regulations and international cross-industry standards and preserving Data Security and Privacy.

“Pryv is created with the ambition to develop and promote a technology solution which is to be used for the design of patient-centric healthcare products, where the personal and real-world data have a crucial impact on the personalized care and treatments.” said Pierre-Mikael Legris, CEO and co-founder of Pryv.

Following its company’s values, the team of Pryv always work by serving their customer-interests first. Thus, the collaboration with Microsoft and its program BizSpark Plus will “certainly comfort our customers on their capabilities to run pryv.io Middleware solutions deployed on Azure.“ said Hubert Ridolphi Chief Sales Officer at Pryv.

“We also proved that by applying our winning cross-industry approach, which enables heterogeneous data acquisition and logic to be applied for outlining the meaningful data- patterns, brings unlimited outcomes and great cost-savings for the entire ecosystem. Managing very sensitive and personal data pushes us in the direction of preserving Ethics, Data Privacy and Security First. The combination of Pryv Vision’s assets brings to our customers confidence in the development of Personalized healthcare solutions to enhance Better care and Quality of Life.” completes Evelina Georgieva, Chief Business Development Officer and Founding member of Pryv.

Pryv’s team has already started the execution of Pryv Growth Strategy, having pryv.io as the crucial element for the development of next level, data-centric healthcare products. Pryv works with companies across the entire ecosystem and will leverage on that in order to have pryv.io set-up as an industry standard by 2022.

Read more about what makes Pryv and its innovative healthcare solution, pryv.io, a promising venture which Microsoft is willing to support: https://sway.com/MZnQDmAQuCLiand4

BizSpark Plus Program in Switzerland: https://www.microsoft.com/fr-ch/bizspark

The post Pryv wins 120’000 USD from Microsoft appeared first on Pryv.

We are very proud and excited about being part of the new Swiss startup Technology team 2017 that will shine in Silicon Valley and impact the world.

The winners of venture leaders Technology 2017 have been selected among more than 100 applications and convinced a jury comprising investors from Waypoint Capital, Rothschild Bank and Swisscom Ventures.

bit.ly/2jAh56t 

Pryv, Evelina Georgieva (eHealth, Internet of Things, EPF Lausanne) pryv.com

The upsurge of eHealth, Medical apps and connected-remote monitoring medical devices comes with the promise to design and promote the next generation of personalized healthcare, patients’ awareness and better healthcare services. However, significant challenges remain to be solved, such as regulatory issues, data security and privacy, interoperability and integration issues. Pryv’s focus is on the design and commercialization of compliant data management software solutions. They developed and sell licenses of a trusted Swiss-made and validated eHealth Data Middleware to empower their customers (Pharma, Hospitals/ Clinics, Medtech, Digital Health, Insurances) to build compliant, innovative and scalable data-driven eHealth products with confidence, reduced time and IT expenses while respecting complex Data Privacy Regulations.

The post Pryv is a TOP VENTURE LEADER IN TECHNOLOGY appeared first on Pryv.

Source: http://healthinformatics.uic.edu/

UIC’s Online Health Informatics Degree

The post Protecting Patient Information In The Age Of Breached appeared first on Pryv.

Join us in San Francisco where the World’s Health Transformers Head to The StartUp Health Festival.

We are excited and looking forward to great networking, experience and learnings during the parallel conferences JP Morgan Healthcare Annual Investment Conference and Biotech Showcase.

The post The Healthcare Transformer- Pryv joins Startup Health Annual Festival & the JP Morgan Annual Investments Conference appeared first on Pryv.

by the Tech Tour after our presentation during the Digital Health Venture Forum which took place in Valencia (Spain) on the 25th and 26th of October 2016.

As one of the finalist, we are pleased to join the 10th edition of The European Venture Summit – Europe’s leading network and investment event for high-growth technological start-ups, venture capital investors and technological corporations is taking place on 5-6 December 2016 in Düsseldorf.

Ranked as high-tech entrepreneurs, we are looking forward to this incredible opportunity that will allow us to enhance Pryv growth across borders.

The European Venture Summit will present 100+ innovative ICT, Life Sciences and Cleantech best companies from all over Europe to an international audience of investors, key  corporates and innovation experts.

The post Qualified in Top 10 Digital Health growing European companies, Pryv goes to the European Venture Summit appeared first on Pryv.

From a patient perspective, Pierre-Mikael will address and present the opportunities and challenges associated with the  EPD.

The full event information is available here: publichealth_flyer_edp_fr

Intro: Le dossier électronique du patient dans la pratique :quels seront les changements au quotidien ?

The focus of the event is the upcoming in 2017 Federal Act for the Electronic Patient Records. Each citizen who is affiliated with the health insurance in Switzerland will now have the possibility to consult his medical data anywhere and at any time. The patient’s record may contain, for example, reports, laboratory data or X-rays. It is the patients who decide which data will be recorded and what taccess to this data will be given (who, when, which).

During this Symposium, several months before the introduction of the electronic patient record, Public Health Switzerland would like to inform about the current state of implementation, with a focus on public health.

It would be discussed if the easy and quick access to medical data will result in more effective, safer and better treatments, and what would be the changes that hospitals and medical practices must prepare.

Furthermore, the discussion will focus on patients, who will have direct access to their medical data, and the important role that the media will play in introducing the patient’s electronic record.

Frais de participation et Inscription: here

Photo Credits: Sante Publique Suisse

The post Pierre-Mikael Legris will present during the Symposium “Le dossier électronique du patient dans la pratique: quels seront les changements au quotidien?” appeared first on Pryv.

The Selection and Ranking is performed by the Tech Tour.

The Digital Health Venture Forum (DHVF) will take place on 25th of October in Valencia at the Las Naves venue.

The Forum will focus on the following:

Digital Health:

1. Digital therapy, prevention and patient care, health data and analytics

Digital therapy and patient engagement (treatment focus)

• Digital Medicine/ Therapy
• Engagement, Gamification, Incentives
• Health Social Platforms / Patient Communities (Patient/ Disease Focus)

Health Data & Analytics (Health Decision Support)

• Cross Platform & Device Data Aggregation
• Health Data Analytics Platform
• Genomic Data & Analytics

2. Digital enabled healthcare delivery, telehealth and connected devices

Sensors & connected devices (tracking & Dx)

• Wearables, Sensors, and Connected Devices
• Mobile Health Solutions & Apps
• Qualified Self Platforms (Wellness Focus)

Digitally Enabled Healthcare Delivery, Remote & Telehealth (Connecting Patients & healthcare)

• Telemedicine / Remote- or Teleconsultations
• Consumer – Healthcare Provider Interactivity & Data Exchange
• Consumer facing Life Sciences IT (Clinical Trials)

3. Social care, provision, innovation and inclusion

• Chronic (diseases) care, services & support
• Benefits management, provision and support
• Healthy ageing and care to the elderly
• Digital support to citizens with reduced mobility

4. Food, nutrition, sports and well-being

• Food monitoring of quality and origin
• Nutrition data and digital services
• Sports and activity digital platforms
• Other digital platforms and services for well being

The post Digital Health Venture Forum 2016 welcomes Pryv as one of the Top 40 of the best European early stage Digital health companies appeared first on Pryv.

AHVF is hosted by Canton de Vaud  and is at its fifth edition. It plays an important role in the promotion of the dynamic and innovative professional entrepreneurs within the Alpine area. It also promotes the venture capitalists in the Alpine area and the rest of Europe to support their partnerships and investments.

Pryv among the best high growth companies
40 early-stage companies active in the high technology sectors were selected to present at the Forum by the Selection Board, who will assess them on the basis of their business potential, technology merit, competitive position, investment interest and  team experience.

The post Alpine High-tech Venture Forum ranks Pryv among the best high growth companies appeared first on Pryv.

MEDUDEM AG and Pryv SA announced a strategic partnership to jointly develop a next generation eHealth solution that supports people living with chronic diseases.

The goal of this collaboration is to bring value to all stakeholders in healthcare including life science companies and insurers. The joint partnership aims to improve health outcomes by enhancing the collaboration and communication among health care organizations and patients, and by facilitating access to data driven decisions.

About MEDUDEM AG:

MEDUDEM AG is a Zurich based Swiss company in the digital health care sector that focuses on the improvement of collaboration and communication of all participants involved around chronic diseases with its readily available, IHE compatible, mobile and web-based solutions Care Integrator^® and Healthbrain^®.

About Pryv SA:

Pryv, a Lausanne based Swiss company, is specialised in sensitive and health data management. Pryv develops and licenses trusted eHealth Data Middleware solutions to empower Medtech, Pharma, Life-Science and other healthcare related organisations to deploy their innovative eHealth solutions with confidence, reduced time and IT expenses.

Pryv OEM eHealth Middleware, pryv.io, is hot pluggable and scalable, it enables effortless collection, structuring, storage and segregation of heterogeneous data (personal, health, medical, clinical and environmental) while ensuring medical-grade security, data interoperability, legal and compliance adaptability.

Commenting on the announcement, Pryv Founder and CEO Pierre-Mikael Legris said, “We are pleased to partner with MEDUDEM AG, Pryv is excited that our Patient Service Oriented Architecture (POA) will be proposed on Medudem’s premium services. Combining our strengths will accelerate the Industry recognition of our expertise in EHealth Data Compliance Management and enable Swiss Health Professionals to gain an efficient access to health information and share it with privacy with their patients suffering from chronic diseases.”
Urs Wittwer, founder and CEO of MEDUDEM AG added: “Through this cooperation our customers and patients will vastly benefit as the integration of mobile devices will become a lot easier. It will facilitate access to important health and benefits-related information and support clinical decisions. It will aid remote patient monitoring and empower patients to take a more proactive role in managing their health.”

Contact Pryv: Evelina Giorgieva, Pryv SA, Innovation Park Building D, EPFL, 1015 Lausanne. pryv.gihub.io/www

Contact MEDUDEM: Urs Wittwer, MEDUDEM AG, Räffelstrasse 28, 8045 Zürich. www.careintegrator.com

The post MEDUDEM AG and Pryv SA team up to jointly develop a next generation eHealth solutions appeared first on Pryv.

CPhI is an established pharmaceutical event with over 26 years’ experience of bringing together the movers and shakers in pharma.

Uniting niche and top buyers and sellers together under one roof innine event locations around the world, CPhI hosts quality conferences,free seminars, Awards and even pharma community charity expeditions!

The CPhI Community is comprised of all job functions throughout thepharma supply chain. You can exhibit, sponsor, speak at or simply join thousands of your fellow colleagues to visit the events.

Select the geographical event regions most desirable to you, or with the suppliers and speakers that best meet your pharma business needs.

Join the #cphifamily today.

The post Pryv participates to CPhI | Mix with the world of Pharma products, people & solutions appeared first on Pryv.

Hack for Ageing Well is a 32 hour event for developing ideas in a creative, interdisciplinary environment: with a focus on teamwork, design thinking and prototyping. Put yourself and your team to the test, get coached and reviewed by a panel of international experts and potential users of your future product, learn new skills, bring the best ideas forward! (First time at a hackathon? README) To work on a start-up idea, study or visualise vital questions, or to learn in a hands-on way: join us at STARTFELD St.Gallen on September 25 and 26, 2016. Attendance is free, and registration is required. Check out http://2016.aalhackathon.eu/?p=456 

Do you want to be a winner at the Hack for Ageing Well 2016?

Save time and Risk during the development stage, by using

api.pryv.me

Pryv SA, a Lausanne based swiss company, is specialised in sensitive and health data management.

Our customizable OEM eHealth Middleware, pryv.io, enables effortless collection, structure, storage and segregation of patients' heterogeneous data (personal, health, medical, clinical, environmental, etc) while ensuring medical-grade security, data interoperability, legal and compliance adaptability.

The pryv.io back-end solution is used by Medtech, Pharma, Research companies, organizations and innovation departments to deploy their eHealth projects, devices and applications and distribute them to multiple markets in compliance with all the technical and legal requirement with reduced risk, time and IT resources.

The post Pryv accelerates the development of better products for elderly during Aging Well Hackathon appeared first on Pryv.

The Innovation World Cup Conference is coming to Switzerland again – on the 21^st of September @Microcity! The day will be a great mixture of some of the biggest tech companies in the world as well as up-and-coming Swiss companies showcasing their innovations in the field of Internet of Things, M2M Communications and wearables. Among the companies represented in Neuchâtel are STMicroelectronics – the world leading provider of semiconductor solutions, Telit – the global leader in Internet of Things enablement, Gemalto – the world leader in digital security, Cicor – one of the leading companies for microelectronics and electronics solutions, and BSH (Bosch Group) – the largest home appliance manufacturer in Europe as well as one of the global industry leaders.

This makes a very exciting and intriguing agenda which you can find here:

http://www.innovationworldcup.com/event/innovation-world-cup-conference-2016-neuchatel/

And co-organizer CSEM is inviting you to network with drinks and snacks after the conference.

20160623 IWC Conference 2016 Neuchatel Agenda_updated

Conference starts:                              01:00 p.m.

Event location:

Microcity

Rue de la Maladière 71

2000 Neuchâtel

Switzerland

Conference ends:                                06:00 p.m.

The conference is free of charge. For you registration please click here: http://www.innovationworldcup.com/event-registration/

See you in NEUCHÂTEL!

The post Pryv shares how to use Blockchain to validate the data from IoT medical devices appeared first on Pryv.

Incorporated in 2012, Pryv is an independent swiss company, funded by a private wealth.

We developed and sell licenses of a market and technology-proven eHealth Middleware which allows for the cost and time-effective deployment of any eHealth, mHealth and innovative Pharma/Medtech project that involves medical or sensitive data collection and/or usage.

Since early 2015, we have been working with the innovation departments of Medtech, Pharma and Research organisations providing them a tool to enable any heterogenous data collection, interoperable structure, compliant data storage distributed in multiple countries and a granular level of data distribution to different stakeholders.

The flexibility of pryv.io being compatible with any legal and technical standards and requirements allows our customers to deploy their products on an international level.

Evelina Georgieva

The post Pryv at a glance appeared first on Pryv.

As one of the most diverse events in the industry, TM Forum Live! provides an excellent opportunity to get more insights on topics across the connected world that matter to you and meet with more than 3000 delegates.

We are pleased to announce the launch of our collaborative project with Ericsson, Verizon, Orange and BaseN “Care@Anywhere” will be launched during the TM Forum Live! in Nice.

“Connectedcare@anywhere” powered by Ericsson, Verizon, Orange, Pryv and BaseN

Operators and health care providers can ensure quality of care by using IoT principles to better connect patients, health care providers, insurance companies, government agencies, family and other stakeholders. This catalyst expands the scope of smart health services from care@home to following the patient to provide connectedcare@anywhere.

Ericsson Service Innovation ecosystem onboards partner offers and exposes in real-time the TM Forum APIs and partner AP
Is for the connected care@anywhere app. The features of the mobile application are delivered by BaseN and Pryv to monitor/manage the data, perform analytics, and enable long-term data collection and privacy management. Detecon supplies their healthcare solution expertise. Orange provided the privacy management expertise, and supports the use of TM Forum APIs.  Verizon provided the requirements for the App UI.

More information is available here: http://inform.tmforum.org/strategic-programs-2/open-digital/2016/03/taking-healthcare-anywhere/

Meet us and key market leaders in Nice:

Evelina Georgieva, Head of Business development and a founding member at Pryv Medical Solutions, will join the panel discussion “Smart Health collaborative work in focus” as a panelist:

More information is available here: http://www.tmforumlive.org/speakers/evelina-georgieva

The post Join us in Nice: Sharing vision on how data privacy should be handled to bring healthcare anywhere appeared first on Pryv.

The most promising entrepreneurs from EPFL and beyond, angel investors, mentors, industry leaders and scientists were attending the EPFL Alumni Seed night that took place on Thursday, April 21, 2016.

Pryv was honoured to present and exhibit as one of the top 10 companies.

Learn more about the event here.

The post Pryv is among the top 10 companies presenting on the EPFL Alumni Seed Night 2016 appeared first on Pryv.

We were excited that our application has been chosen as one of the best for the HighTech Showdown.

During the theme finale Pryv was ranked as one of the Top 5 HighTech growing companies.

The post Pryv is ranked as one of the Top 5 HighTech growing companies in the Swiss Startup Summit on the 19th of April 2016 appeared first on Pryv.

The post «Aujourd’hui, nous sommes compatibles au niveau international…» avance Evelina Georgieva pour L’Agefi appeared first on Pryv.

Konica Minolta Business Incubation Centre (BIC) proposes ideas and shapes them collaboratively with others into commercialised businesses. It brings together academics, startups, more established companies and R&D functions of global enterprises to work together in shaping great ideas and products.

The Leading Edge Community Ideas Platform gives the opportunity to observe, initiate and shape ideas on an open ideas management platform between Konica Minolta employees, clients and partners. The purpose the Leading Edge Partner Community is to discover and build working business prototypes in short timescales for the commercial benefit of the community and the wider world.

Pryv is very much looking forward to a successful collaboration!

The post Pryv joins Konica Minolta Leading Edge Partners community appeared first on Pryv.

The project pilot was presented in Nice in May 2016. More information can be found here:

Check the project video here:

TM Forum is the global industry association for digital business, connecting talented individuals, leading companies, and diverse ecosystems to accelerate our members’ successful digital business transformation. The collective experience and interests of our member community comprised of tens-of-thousands of professionals within 900+ market-leading organizations drives everything we do, from thought-provoking research and publications, to practical guidance, collaboration programs, tools and best practices, hands-on events, and training for business and IT leaders.

TM Forum Smart Health themes include: taking healthcare to where the patient (or well person) is; telemedicine; remote monitoring; interoperability; privacy.

Taking healthcare anywhere

BY TONY POULOS| OPEN DIGITAL ECOSYSTEM & IOT   I MARCH 14, 2016

Catalyst Evangelist, TM Forum @tonypoulos

The post Pryv collaborates with Ericsson, Verizon, Orange, Detecon and BaseN to allow taking healthcare anywhere appeared first on Pryv.

The post Touching Lives with Wearable Technology appeared first on Pryv.

The post “Connected Medical Device” event in UK starts Pryv expansion to the UK market appeared first on Pryv.

Montant recherché : 1,6 millions de francs

De la balance de votre salle de bain aux pacemakers, les dispositifs médicaux produisent quantité de données hétérogènes et donc difficiles à intégrer en dépit que cela améliorerait les diagnostics et la personnalisation des thérapies. Pryv a développé une plateforme qui collecte, conserve et distribue ces données tout en respectant les législations et la vie privée. La pharma  s’y intéresse pour ses essais cliniques et les medtechs pour lesquels c’est une base pour construire des applications de e-santé.

Contact : Evelina Georgieva, evelina@pryv.com

http://www.bilan.ch/economie-plus-de-redaction/50-start-suisses-investir-sinspirer

The post Pryv is one of the selected 50 swiss start-ups to invest in (Bilan selection 2016) appeared first on Pryv.

By following the link below you will access the presentation video.

To receive further information on how Pryv technology can accelerate your AAL and eHealth projects, please contact us at office@pryv.com

Pryv Middleware supports better healthcare for elderly people at home Video link 

Author:

Evelina Georgieva

The post Les services à la personne – AlpICT Pierre-Mikael Legris, PrYv SA appeared first on Pryv.

• 13 h 30 – 14 h 30 Success stories Alliance

  • Alliance : 10 ans d’innovation au service des entreprises
    Catherine Jean, Conseillère en innovation, Alliance
  • Présentation du prix de l’innovation de l’Association Alliance
    Georges-Antoine Garret, Président de l’Association Alliance, Association Alliance
  • Pitchs des nominés du prix de l’innovation
    Entreprises membres de l’Association Alliance (Contexa SA, LN Industries SA, TESA SA) et entreprises start-ups (Scientific Visual SA, Cliris SA, Veovox SA)
  • Présentation des plateformes thématiques et des workshops
    Audrey Saumon, Coordinatrice programme NPR, CDEP-SO

  14 h 45 – 16h Workshops

  • Mesures physiologiques – BioAlps
    Animé par Pascale Van Landuyt (Alliance), avec Claude Joris (BioAlps), Josep Solà i Carós (CSEM SA), Prof. Sandro Carrara (EPFL), Benoit Mariani (Gait Up SA)
  • Les services à la personne – AlpICT
    Animé par Robert van Kommer (Alliance), avec Didier Mesnier (AlpICT), Prof. Jean Hennebert (HEIA-FR), Matteo Leonardi (Sensimed SA),Guillaume Du Pasquier (DomoSafety SA), Pierre-Mikael Legris (PrYv SA)
  • Conséquences énergétiques – CleantechAlps
    Animé par Philippe Nasch (Alliance), avec Eric Plan (CleantechAlps), Prof. Babak Falsafi (EPFL), Fabrice Roudet (Eaton Industries)
  • Basse consommation – Micronarc
    Animé par Claude Muller (Alliance), avec Danick Bionda (Micronarc), Prof. Jean-Dominique Decotignie (CSEM), Prof. Mario Dellea (HE-Arc), Thierry Melly (Semtech)

  dès 16 h Forum et networking : de l’idée au marché

  Stands de présentation de projets d’innovation développés en partenariat entre des entreprises et des laboratoires de recherche ayant abouti à une commercialisation.

  17 h La bataille des poignets : c’est l’heure d’être connecté !

  • Message d’accueil
    Adrienne Corboud Fumagalli, Vice-présidente innovation et valorisation, EPFL
  • Le poignet connecté : et ensuite ?
    Christian Simm, CEO, Swissnex San Francisco
  • Nouvelle normalité dans l’horlogerie suisse
    Claude Vuillemez, Directeur des produits horlogers, Richemont International SA

  18 h Table ronde

  Animée par Roland Luthier, Directeur d’Alliance, avec les deux conférenciers ci-dessus et trois invités:

  • Mario El-Khoury

    CEO, CSEM

  • Peter Stas

    Member of the Executive Board, Frédérique Constant

  • Denis Piquerez

    Wearable Technology Division Manager, SOPROD SA

  18 h 45 Remise du prix de l’Association Alliance

  Georges-Antoine Garret, Président de l’Association Alliance

  19 h Cocktail dînatoire

http://www.alliance-tt.ch/manifestations/31

The post La bataille du poignet : c’est l’heure d’être connecté ! appeared first on Pryv.

Qu’est-ce qu’une donnée et comment la sécuriser? Chefs d’entreprise et spécialistes de cybersécurité ont apporté des réponses à cet enjeu phare pour l’avenir des PME suisses, mercredi 4 novembre lors de la soirée organisée par Innovaud durant la CyberSec Conference, à Y-Parc (Yverdon).

…

Comment gérer une base de données?

The post Pryv @ Banque Cantonale Vaudoise Actualité et médias: PME: comment protéger vos données? appeared first on Pryv.

For the latest edition of the Swiss Medtech Industry Magazine,  Pryv CEO, Pierre-Mikael Legris, exposed how Pryv can support Medtech, eHealth and Pharma companies to enter the space of digital healthcare faster with limited development costs.

Technical challenges such as enabling technical interoperability, standards compliances and standardization of heterogeneous data are solved by Pryv via using innovative ontology for data collection and structuring respecting data privacy and security.

Furthermore,  to meet the legal and compliances regulations requirements for sensitive personal and health data management, the ownership of the data is defined at a granular level which enables patients, medical doctors, Pharma companies, CROs and hospitals to easy transfer health records, medical and clinical data easily and securely, in real-time.

Additional capabilities of Pryv eHealth Middleware, pryv.io, are:

– secondary usage of data- valuable for clinical studies and early detection of diseases via patterns monitoring

– data contextualization of unlimited data sets- critical for the personalised drug development and treatment

– compliances adaptability- mandatory for multiple market products and services distribution

To learn more how Pryv can support your projects and development in the digital healthcare contact us.

Evelina Georgieva

Read the article at Swiss Medtech Industry in English:

The post Pryv at Swiss Medtech Industry 2015 appeared first on Pryv.

Comme beaucoup d’autres domaines, le monde de la santé helvétique se trouve profondément bouleversé par le digital. La cybersanté explose et l’arrivée d’applications et autres appareils connectés promet l’émergence d’une nouvelle génération de patients numériques, qui bénéficieront de meilleurs services et d’une médecine plus flexible et adaptée à leurs besoins. De nombreux défis restent cependant à relever, tels que les questions réglementaires, l’interopérabilité et surtout la sécurisation des données et le respect de la vie privée. C’est la tâche à laquelle s’attelle Pryv, basé à l’EPFL Innovation Park et spécialisé dans l’E-santé.

C’est en traversant une phase délicate de sa vie, soit l’épreuve de la maladie et de l’hospitalisation, que Pierre Mikael Legris a compris l’importance de la collecte de données de santé hors cadre hospitalier. Souffrant d’une leucémie, celui-ci doit en effet passer beaucoup de temps à l’hôpital. Ce qui n’était en fait pas forcément nécessaire : « J’ai réalisé qu’au bout d’un moment les médecins me gardaient beaucoup pour quelques mesures, mais qu’au final je pourrais tout aussi bien le faire depuis chez moi ».

Au départ, tout est noté dans un carnet et envoyé ensuite par email aux médecins qui le suivent, ce qui posait certains problèmes d’ordre pratique et présentait des risques, au niveau de la protection des données notamment : « J’ai compris que tout cela devait être systématisé » ajoute le CEO de la start-up lausannoise. Fondée en 2012, Pryv SA distribue aujourd’hui Pryv.io un « E-Health middleware » sous forme de licences.

Plus concrètement, le logiciel de Pryv est destiné aux sociétés qui ont besoin de développer leur propre solution cloud pour collecter et stocker des données médicales et personnelles. Il permet de créer des plateformes qui utilisent par exemple des objets connectés, tout en étant en conformité avec les standards du secteur et en s’assurant que seuls les personnes et services autorisés pourront avoir accès à ces informations en respectant la sphère privée du patient.

Basée sur une structuration unique, la plateforme peut récolter et distribuer une foule de données différentes en temps réel, tel que le taux de sucre dans le sang, essentiel dans le cas de malades souffrant du diabète. Combinées avec l’activité mesurée par des montres connectées et des photos des repas, ces informations ouvrent la porte de la médecine personnalisée et du traitement par des algorithmes spécialisés.

De plus, avec l’essor de l’ « internet of things », des données collectées par le patient lui-même pourront être automatiquement ajoutées à son dossier médical, une possibilité de contribution qui sera d’ailleurs réglementée par une loi fédérale dès 2017. Le monde des essais clinique pourrait également être totalement transformé par une telle innovation, en évitant de nombreuses saisies manuelles et en permettant leur traitement en temps réel.

En recherche de partenaires financiers, Pryv est déjà établi sur plusieurs projets : « Nous travaillons par exemple avec Domosafety, spécialiste des objets connectés au service du maintien à domicile des personnes âgées. Notre plateforme est par exemple utilisée lorsqu’ils souhaitent ajouter un appareil de contrôle ou inclure des membres de la famille dans la boucle d’information. Nous permettons à des projets eHealth de disposer d’une plateforme personnelle, prête à l’emploi, dès la phase de prototypage. », conclut-il.

Full article here

The post PRYV: AU SERVICE DU PATIENT 2.0 appeared first on Pryv.

Pryv is excited to present its approach for managing mHealth and sensitive personal data.

Pryv: eHealth Middleware for secure health data management

There is an explosion of mHealth and Medical apps and devices promising to build the next generation of digital patients, the personalized medicine and better healthcare services. However, significant challenges remain to be solved, such as regulatory issues, data security and privacy, interoperability and integration issues. At Pryv, we developed a trusted eHealth Data Middleware to empower Medtech and eHealth SMEs to go to market with confidence, reduced time and IT expenses. Our customizable back-end solution enables effortless connectivity to any data source and full-fledged data management while ensuring medical-grade of security, data interoperability, legal and compliance adaptability.

More information about the event: https://www.swisscom.ch/fr/business/enterprise/support/connected-table.html?CampID=ENT_NL_EVENTBIGDATA_FR

The post Pryv presents during the event Innovaud “From Big Data To Smart Data appeared first on Pryv.

We would like to welcome you at our stand in the exhibiting area,  where we can exchange insights on innovative IT approaches for managing personal and health data. We would be also pleased to share with you our experience on positioning Pryv eHealth Middleware on the rapidly growing Medtech, Pharma and mHealth market.

WHAT IS THE FORUM EPFL?

The Forum EPFL is the biggest career fair in Switzerland with over 150 companies, 70 start-ups and 20 universities coming every year to meet EPFL graduates and PhDs.

The post Pryv is exhibiting at Forum EPFL on the 7th of September, 2015 appeared first on Pryv.

http://www.innovaud.ch/fr/actualites/actualite-details/alpine-high-tech-venture-forum-2015/55ad1496d48300dcb70b19ca00552b78/

The post Pryv a exposé sa solution de « back-end » Apline High Tech Forum appeared first on Pryv.

Atteint d’une leucémie et suivi aux HUG pour une transplantation de moelle osseuse, Pierre-Mikael Legris, informaticien de 38 ans, explique pourquoi il ne pourrait plus se passer de son dossier médical numérisé. Dans le canton de Genève, c’est tous les acteurs de la santé qui plébiscitent cet outil.

Read the full story on Journaldupersonnel.poste.ch

The post Pierre-Mikael Legris (Pryv, CEO) shares his experience using Mon e-dossier médical (http://journaldupersonnel.poste.ch/) appeared first on Pryv.

In Switzerland, a new federal law regulating the shared electronic patient record is currently being discussed at the political level. This law promotes the use of electronic health services, eHealth and, in particular, the rollout of electronic patient records. Implementation of the electronic patient record is expected to improve patient safety and increase in the efficiency of the healthcare system, while empowering patients. The law will introduce mandatory use of the electronic health record for inpatients with some limited financial incentives.”

Full Article: http://blog.smw.ch/biomedical-informatics-in-switzerland-need-for-action/

The post Biomedical informatics in Switzerland: need for action By Christian Lovis and Jürg Blaser appeared first on Pryv.

The post Infographic Key Digital Health Trends for EU Pharma Marketers by Manhattan Research appeared first on Pryv.

15 innovative healthcare projects  will be developed in the next 48 hours.

13 mentors will support all the teams during the event.

On the 7th of June at 11:00AM each team will present its project in front of a jury.

The winning project will win the main prize (value of CHF 25‘000). Winners will be presented to the public  Thursday, 11 June 2015, during the e-Health day, organized at the TechnoArk Sierre.

Check out the full program here.

Pryv is supporting the event by providing:

• access to software platform and tools for data collection, management and storage
• technical support to use the platform and the tools
• mentoring

Arkathon Hacking Health Valais wishes to create an environment conducive to the emergence of digital health projects by inviting health professionals and new technologies experts to work together.

Held for the first time in Sierre from 5 to 7 June 2015, this event is meant for healthcare professionals which have challenges needed to be solved by computer technology, as well as software developers willing to make their skills available to practical health projects.

Join us!

The post Arkathon Hacking Health Valais starting today at 17:00 in Sierre appeared first on Pryv.

Our software tools empowers Medtech and Connected-Health companies to go to market with reduced time and IT resources!

The post Pryv presents at Medtech Village Geneva on June, 3rd 16:30 during the conference “Innovation and Process Optimization” appeared first on Pryv.

Find out more about the participants and exhibiting companies here

The post La Journée de l’Innovation et des PME, le 12 mai au SwissTech Convention Center, EPFL appeared first on Pryv.

Find out more here

The post We are proud Pryv is one of the 8 selected ICT start-ups for the SICTIC day, Lausanne, May 11th appeared first on Pryv.

The post NueMD Infographic: HIPAA, We Have A Problem appeared first on Pryv.

DONNÉES PERSONNELLES

Depuis de nombreuses années, on répète que les lois helvétiques sur la protection de la vie privée sont un atout dans la nouvelle économie numérique. Les révélations de l’affaire Snowden sur la surveillance des données personnelles, l’arrivée des objets connectés et du soi quantifié et les applications pour smartphone qui nous géolocalisent à tout instant ont rendu la question tangible pour un large public.

Reste qu’à l’exception de la transformation de quelques bunkers de l’armée en data centers, le business suisse de la protection de la vie privée et des données demeurait abstrait pour l’utilisateur lambda. C’est ce qu’a décidé de changer une poignée de start-up.

Privately dans le contrôle d’accès aux données que l’on publie sur les réseaux sociaux, Pryv pour celui des données médicales, Threema avec sa messagerie instantanée encryptée et ProtonMail avec ses e-mails entièrement sécurisés donnent aux utilisateurs des moyens simples et efficaces de protéger leurs données personnelles des grandes oreilles de la NSA comme de Google et consorts. En substance, non seulement elles conservent les données sur des serveurs basés en Suisse mais elles démocratisent des outils sophistiqués d’encryptions. Ils sont invisibles dans l’expérience utilisateur.

Naissance d’un cluster

Spin-off du groupe Kudelski, Privately vient ainsi de lancer une application qui rend les données (les photos, par exemple) publiées sur Facebook et Twitter accessibles uniquement à des destinataires et pour des durées choisis. Il suffit de les télécharger sur l’app qui les publie ensuite sur les réseaux sociaux avec ces paramètres. La lausannoise Pryv commercialise, elle, sa technologie certifiée en marque blanche pour des partenaires dans le domaine de la santé.

A l’instar de Domosafety, ils en font une fonctionnalité de leurs produits. Threema, de son côté, fait un carton en Allemagne avec une messagerie de type WhatsApp entièrement encryptée et utilisée par 3,2  millions de personnes. La genevoise ProtonMail s’apprête à lancer sa boîte mail, elle aussi encryptée, après avoir attiré plus de 300 000 utilisateurs pour la version test. Grâce à une prise en compte soignée de l’expérience utilisateur, ces entreprises concrétisent les promesses d’un cluster helvétique dans la «privacy».

The post Bilan: Les nouveaux modèles d’affaires de la «privacy». appeared first on Pryv.

We are excited to announce integration with Moves, as well as the release of a new version of Pryv for iOS, with new functionality and better performance and usability. Moves integration Now you can enrich your Pryv perspective with all the walking, cycling and running automatically recorded by Moves. Connect here (or via the web app) Graph visualization for your measures on iOS Get a more insightful view for your numerical values. Please note that in version 1.7.7 of the app your values and graphs will appear first in the mobile timeline. Download Pryv for iOS

Copyright © 2015 Pryv, All rights reserved.

The post Pryv news: connect Moves App and graphs on iOs App appeared first on Pryv.

MEET THE COMPANIES DESTROYING SOFTWARE SUITES AND SYSTEM INTEGRATION AS WE KNOW IT

The post BDO: An interview with Pryv, Elasticio & Followupcc on the future of cloud connectors appeared first on Pryv.

Wearables und andere Sensoren

The post ” Die dezentrale Ablage medizinischer Daten unter Berücksichtigung der Jurisdiktion und unter Verwendung von Wearables ist die Spezialität von Pryv. “ appeared first on Pryv.

Together with Hacking Health Meetup Zurich, we’d like to invite you to join the Hacking Health Camp in Strasbourg, which will take place March 19th-22nd.

The Hacking Health Camp (http://hackinghealth.camp/) is one of the biggest events in Europe for health-focused hackathons. The entire event will cover four days and includes conferences, workshops, and a weekend hackathon. You can join for one or all the events, and there are reductions for Students and Startups, with a savings of 50%. Here are the specifics:

http://hackinghealth.camp/ticket.html

THE FUTURE OF HEALTH

9:30 – 17:00, THURSDAY, MARCH 19, 2015

A entire day of inspiring and forward-thinking conferences on the future of health by a line up of internationally-recognized health mentors.

HEALTH PITCH CHALLENGE : HEALTH STARTUPS KONTEST PARTY

19:00 – 22:00, THURSDAY EVENING, MARCH 19, 2015

A festive event dedicated to health startups, complete with the presence of investors. Early-stage startups will pitch; attendees will vote by investing in their favorite startups with fake banknotes. The winner will be the one who raises the most money.

HEALTH DATA DAY : BIG DATA IN HEALTHCARE IS HERE, HOW CAN WE USE IT ?

9:00 – 17:00, FRIDAY MARCH 20, 2015

A full day of workshops and conferences centered around the technical, medical, privacy and legal aspects of producing, consuming and analyse health data.

HEALTH HACKATHON : PROTOTYPING WEEKEND

17:00, FRIDAY 20 TO 22:00, SUNDAY 22 MARCH, 2015

The second annual hackathon will run from Friday evening to Sunday evening. Health professionals, developers and designers will create prototypes based on challenges submitted before the event.

The post Hacking Health Camp in Strasbourg, March 19th-22th appeared first on Pryv.

“The “swiss made software” label is dedicated to promoting the Swiss software sector both in Switzerland and abroad. It is associated with Swiss values such as quality, reliability and precision – in particular in software development.This fact is also confirmed by the presence of numerous international companies. Additionally companies like Google and IBM operate local research and development centers. On this platform, you can find a directory of all companies that meet the label’s requirements. In other words: partners that are innovative, open and flexible.”

http://www.swissmadesoftware.org/en/companies/pryv/home.html

The post Pryv is labeled as “Swiss made software” appeared first on Pryv.

2. The Gift of Knowledge

3. The Gift of Connection

4. The Gift of Movement

5. The Gift of Hope

6. The Gift of Life

More at:http://hitconsultant.net/2014/12/03/6-ways-digital-health-transformed-health-care-2014/

The post 6 Ways Digital Health Transformed Healthcare in 2014 by http://hitconsultant.net/ appeared first on Pryv.

At the same time, we came to acknowledge that we would not be able to develop our user product as initially expected. To achieve our ambitions and launch a full-featured offer, we need significantly more resources that are still missing so far.

We thus decided to adjust our strategy, and focus on providing Pryv as a platform and service to health organisations.

Importantly, pursuing this new business opportunity will allow us to continue supporting and evolving Pryv for our users. The Pryv service will continue to run, with registration open to everyone, and in a couple of weeks we’ll publish updates to both our web and iOS apps.

We look forward to what this change will bring for Pryv and its users, and are currently looking for more business partners. Learn more about our offer to businesses here.

The post Pryv changes strategy to support the health sector appeared first on Pryv.

https://ec.europa.eu/digital-agenda/en/news/mhealth-what-it-infographic

The post mHealth, what is it? – Infographic appeared first on Pryv.